Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0557

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0557
Last Modified 05 Sep 2008 04:34:38
Published 18 Aug 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0557

Summary

SQL injection vulnerability in login.asp for StoreFront 6.0, and possibly earlier versions, allows remote attackers to obtain sensitive user information via SQL statements in the password field.

Vulnerable Systems

Application

  • Lagarde Storefront 6.0


References

BUGTRAQ - 20030712 ZH2003-3SA (security advisory): Storefront sql injection: users


Last Updated: 27 May 2016 10:37:58