Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3838

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3838
Last Modified 07 Mar 2011 09:27:14
Published 26 Nov 2005 05:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3838

Summary

Multiple SQL injection vulnerabilities in search.php in IsolSoft Support Center 2.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) lorder, (2) Priority, (3) Status, (4) Category, (5) searchvalue, and (6) field parameter.

Vulnerable Systems

Application

  • Isolsoft Support Center 2.2


References

VUPEN - ADV-2005-2592

BID - 15570

SECTRACK - 1015270

SECUNIA - 17728

OSVDB - 21102

MISC - http://pridels0.blogspot.com/2005/11/isolsoft-support-center-sql-inj.html


Last Updated: 27 May 2016 10:41:04