Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4658

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4658
Last Modified 07 Mar 2011 10:12:49
Published 21 Oct 2008 08:11:51
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4658

Summary

SQL injection vulnerability in the JobControl (dmmjobcontrol) 1.15.4 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Systems

Application

  • Typo3 Jobcontrol 0.0.0

  • Typo3 Jobcontrol 1.0.0

  • Typo3 Jobcontrol 1.0.1

  • Typo3 Jobcontrol 1.1

  • Typo3 Jobcontrol 1.1.1

  • Typo3 Jobcontrol 1.10.0

  • Typo3 Jobcontrol 1.10.1

  • Typo3 Jobcontrol 1.10.2

  • Typo3 Jobcontrol 1.10.3

  • Typo3 Jobcontrol 1.11.0

  • Typo3 Jobcontrol 1.11.1

  • Typo3 Jobcontrol 1.11.2

  • Typo3 Jobcontrol 1.12.0

  • Typo3 Jobcontrol 1.13.0

  • Typo3 Jobcontrol 1.14.0

  • Typo3 Jobcontrol 1.15.0

  • Typo3 Jobcontrol 1.15.1

  • Typo3 Jobcontrol 1.15.2

  • Typo3 Jobcontrol 1.15.3

  • Typo3 Jobcontrol 1.15.4

  • Typo3 Jobcontrol 1.2

  • Typo3 Jobcontrol 1.3

  • Typo3 Jobcontrol 1.4

  • Typo3 Jobcontrol 1.5

  • Typo3 Jobcontrol 1.6

  • Typo3 Jobcontrol 1.7

  • Typo3 Jobcontrol 1.8

  • Typo3 Jobcontrol 1.8.1

  • Typo3 Jobcontrol 1.8.2

  • Typo3 Jobcontrol 1.8.3

  • Typo3 Jobcontrol 1.9

  • Typo3 Jobcontrol 1.9.1

  • Typo3 Jobcontrol 1.9.2

  • Typo3 Jobcontrol 1.9.3

  • Typo3 Jobcontrol 1.9.4

  • Typo3 Jobcontrol 1.9.5


References

BID - 31840

CONFIRM - http://typo3.org/teams/security/security-bulletins/typo3-20081020-1/

MISC - http://typo3.org/extensions/repository/view/dmmjobcontrol/1.15.5/

VUPEN - ADV-2008-2870

SECUNIA - 32342


Last Updated: 27 May 2016 10:48:34