Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0221

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0221
Last Modified 05 Sep 2008 04:58:40
Published 16 Jan 2006 04:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0221

Summary

SQL injection vulnerability in index.asp in the Admin Panel in Dragon Design Services Network (DDSN) cm3 content manager (CM3CMS) allows remote attackers to execute arbitrary SQL commands via the (1) username or (2) password.

Vulnerable Systems

Application

  • Ddsn Cm3cms


References

XF - cm3-login-sql-injection(24266)

BID - 16231

BUGTRAQ - 20060113 DDSN CMS Admin Panel SQL Injection Vulnerability

OSVDB - 22696


Last Updated: 27 May 2016 10:41:34