Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5978

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5978
Last Modified 15 Jun 2010 01:26:46
Published 26 Jan 2009 08:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5978

Summary

Multiple SQL injection vulnerabilities in Ocean12 Mailing List Manager Gold allow remote attackers to execute arbitrary SQL commands via the Email parameter to (1) default.asp and (2) s_edit.asp.

Vulnerable Systems

Application

  • Ocean12 Technologies Mailing List Manager Nil


References

XF - mailinglist-default-sedit-sql-injection(47021)

BID - 32587

MILW0RM - 7319

SECUNIA - 32929


Last Updated: 27 May 2016 10:49:00