Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4155


Vulnerability Score 7.5 7.5
CVE Id CVE-2005-4155
Last Modified 05 Sep 2008 04:56:11
Published 10 Dec 2005 09:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



registration.PHP in ATutor 1.5.1 pl2 allows remote attackers to execute arbitrary SQL commands via an e-mail address that ends in a NULL character, which bypasses the PHP regular expression check. NOTE: it is possible that this is actually a bug in PHP code, in which case this should not be treated as a vulnerability in ATutor.

Vulnerable Systems


  • Adaptive Technology Resource Centre Atutor 1.5.1 Pl2


BID - 15355

OSVDB - 20851

SECTRACK - 1015166


Last Updated: 27 May 2016 10:41:12