Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1919

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1919
Last Modified 11 Apr 2009 12:14:39
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1919

Summary

SQL injection vulnerability in shopadmin.asp in VP-ASP 4.0 allows remote attackers to execute arbitrary SQL commands and bypass authentication via the (1) username or (2) password fields.

Vulnerable Systems

Application

  • Virtual Programming Vp-asp 4.0


References

BID - 4861

BUGTRAQ - 20020610 Re: VP-ASP shopping cart software.

BUGTRAQ - 20020527 Re: VP-ASP shopping cart software.


Last Updated: 27 May 2016 10:37:32