Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3610

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-3610
Last Modified 05 Sep 2008 05:07:36
Published 18 Jul 2006 11:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3610

Summary

index.php in Orbitcoders OrbitMATRIX 1.0 allows remote attackers to obtain sensitive information (partial database schema) via a modified page_name parameter, which reflects portions of an SQL query in the result. NOTE: it is not clear whether the information is target-specific. If not, then this issue is not an exposure.

Vulnerable Systems

Application

  • Orbitcoders Orbitmatrix 1.0


References

BUGTRAQ - 20060713 Orbitmatrix PHP Script v1.0


Last Updated: 27 May 2016 10:43:04