Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2616

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2616
Last Modified 07 Mar 2011 09:36:35
Published 25 May 2006 09:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2616

Summary

SQL injection vulnerability in the search script in (1) AlstraSoft Web Host Directory 1.2, aka (2) HyperStop WebHost Directory 1.2, allows remote attackers to execute arbitrary SQL commands via the uri parameter.

Vulnerable Systems

Application

  • Alstrasoft Webhost Directory 1.2


References

XF - hs-webhostdirectory-search-sql-injection(26658)

XF - webhostdirectory-search-sql-injection(26653)

VUPEN - ADV-2006-1973

VUPEN - ADV-2006-1972

BUGTRAQ - 20060523 AlstraSoft Web Host Directory v1.2

SECUNIA - 20278

SECUNIA - 20276

SREASON - 955


Last Updated: 27 May 2016 10:42:40