Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0410

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0410
Last Modified 07 Mar 2011 09:30:00
Published 24 Jan 2006 09:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0410

Summary

SQL injection vulnerability in ADOdb before 4.71, when using PostgreSQL, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors involving binary strings.

Vulnerable Systems

Application

  • John Lim Adodb 4.66

  • John Lim Adodb 4.68

  • John Lim Adodb 4.70


References

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=387862&group_id=42718

SECUNIA - 18575

XF - adodb-postgresql-sql-injection(24314)

VUPEN - ADV-2006-0448

VUPEN - ADV-2006-0315

BID - 16364

OSVDB - 22705

GENTOO - GLSA-200604-07

GENTOO - GLSA-200602-02

DEBIAN - DSA-1031

DEBIAN - DSA-1030

DEBIAN - DSA-1029

SECUNIA - 19591

SECUNIA - 19590

SECUNIA - 19555

SECUNIA - 18745

SECUNIA - 18732

SECUNIA - 19691


Last Updated: 27 May 2016 10:41:38