Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2161

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-2161
Last Modified 05 Sep 2008 04:43:22
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2161

Summary

SQL injection vulnerability in file_overview.php in TUTOS 1.1 allows remote attackers to execute arbitrary SQL commands via the link_id parameter.

Vulnerable Systems

Application

  • Tutos 1.1 2004-04-14


References

XF - tutos-sql-injection(17444)

SECUNIA - 12606

BID - 11221

BUGTRAQ - 20040918 Vulnerabilities in TUTOS

CONFIRM - http://cvs.sourceforge.net/viewcvs.py/tutos/tutos/php/file/file_overview.php?r1=1.11.2.1&r2=1.11.2.2

OSVDB - 10164

DEBIAN - DSA-980

SECTRACK - 1011363

SECUNIA - 18954


Last Updated: 27 May 2016 10:39:22