Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1585

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-1585
Last Modified 07 Mar 2011 09:33:23
Published 02 Apr 2006 05:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1585

Summary

Multiple SQL injection vulnerabilities in MonAlbum 0.8.7 allow remote attackers to execute arbitrary SQL commands via (1) the pc parameter in (a) index.php and (2) pnom, (3) pcourriel, and (4) pcommentaire parameters in (b) image_agrandir.php.

Vulnerable Systems

Application

  • 3dsrc Monalbum 0.8.7


References

XF - monalbum-image-imageagrandir-sql-injection(25572)

VUPEN - ADV-2006-1206

BUGTRAQ - 20060331 MonAlbum 0.8.7 SQL Injection

BID - 17327

MISC - http://www.bash-x.net/undef/adv/monalbum.html

SREASON - 660

SECUNIA - 19503


Last Updated: 27 May 2016 10:42:06