Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0709

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0709
Last Modified 10 Sep 2008 03:12:45
Published 10 Oct 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0709

Summary

SQL injection vulnerabilities in the Web Reports Server for SurfControl SuperScout WebFilter allow remote attackers to execute arbitrary SQL queries via the RunReport option to SimpleBar.dll, and possibly other DLLs.

Vulnerable Systems

Application

  • Surfcontrol Superscout Web Filter 3.0

  • Surfcontrol Superscout Web Filter 3.0.3

  • Surfcontrol Web Filter 4.0

  • Surfcontrol Web Filter 4.1


References

BID - 5859

XF - superscout-webfilter-sql-injection(10245)

BUGTRAQ - 20021002 wp--02-0005: Multiple Vulnerabilities in SuperScout Web Reports Server


Last Updated: 27 May 2016 10:37:02