Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0693

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0693
Last Modified 07 Mar 2011 09:30:36
Published 15 Feb 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0693

Summary

Multiple SQL injection vulnerabilities in rb_auth.php in Roberto Butti CALimba 0.99.2 beta and earlier allow remote attackers to execute arbitrary SQL commands and bypass login authentication via the (1) login and (2) password parameters.

Vulnerable Systems

Application

  • Roberto Butti Calimba 0.99.1

  • Roberto Butti Calimba 0.99.2 Beta


References

XF - calimba-rbauth-sql-injection(24578)

VUPEN - ADV-2006-0523

MISC - http://www.evuln.com/vulns/68/summary.html

BID - 16632

BUGTRAQ - 20060217 [eVuln] CALimba Authentication Bypass Vulnerability

SREASON - 453

SECUNIA - 18856


Last Updated: 27 May 2016 10:41:46