Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2123

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-2123
Last Modified 07 Mar 2011 09:35:24
Published 01 May 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2123

Summary

Multiple SQL injection vulnerabilities in the report interface in Network Administration Visualized (NAV) before 3.0.1 allow remote attackers to execute arbitrary SQL commands via unknown vectors.

Vulnerable Systems

Application

  • Network Administration Visualized 3.0


References

BID - 17734

SECUNIA - 19849

VUPEN - ADV-2006-1572

OSVDB - 25066

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=413412

XF - nav-report-interface-sql-injection(26151)


Last Updated: 27 May 2016 10:42:20