Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1096

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-1096
Last Modified 05 Sep 2008 04:48:12
Published 06 Apr 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1096

Summary

SQL injection vulnerability in main.asp for Ocean12 Membership Manager Pro 1.x allows remote attackers to execute arbitrary SQL commands via the UserID parameter.

Vulnerable Systems

Application

  • Ocean12 Technologies Membership Manager Pro


References

XF - ocean12-membershipmgr-mainasp-sql-injection(20015)

BID - 13049

OSVDB - 15307

MISC - http://www.hackerscenter.com/archive/view.asp?id=1865

SECTRACK - 1013667

SECUNIA - 14864


Last Updated: 27 May 2016 10:40:02