Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6035

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2007-6035
Last Modified 08 Aug 2011 12:00:00
Published 20 Nov 2007 06:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6035

Summary

SQL injection vulnerability in graph.php in Cacti before 0.8.7a allows remote attackers to execute arbitrary SQL commands via the local_graph_id parameter.

Vulnerable Systems

Application

  • Cacti 0.8.7


References

CONFIRM - http://www.cacti.net/release_notes_0_8_7a.php

SECUNIA - 27719

FEDORA - FEDORA-2007-3683

XF - cacti-graph-sql-injection(38559)

VUPEN - ADV-2007-3911

SECTRACK - 1018982

BID - 26487

SUSE - SUSE-SR:2007:024

MANDRIVA - MDKSA-2007:231

DEBIAN - DSA-1418

GENTOO - GLSA-200712-02

SECUNIA - 27950

SECUNIA - 27891

SECUNIA - 27756

SECUNIA - 27745

MISC - http://bugs.gentoo.org/show_bug.cgi?id=199509


Last Updated: 27 May 2016 10:46:22