Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1489

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1489
Last Modified 03 Nov 2008 01:15:06
Published 29 Mar 2006 03:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1489

Summary

Multiple SQL injection vulnerabilities in FusionZONE CouponZONE local.cfm in 4.2 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) companyid, (2) scat, and (3) coid parameters.

Vulnerable Systems

Application

  • Fusionzone Couponzone 4.2


References

BID - 17274

OSVDB - 24179

XF - couponzone-local-sql-injection(25576)

MISC - http://pridels0.blogspot.com/2006/03/couponzone-v42-multiple-vuln.html


Last Updated: 27 May 2016 10:42:05