Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6257

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6257
Last Modified 24 Feb 2009 12:00:00
Published 24 Feb 2009 01:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6257

Summary

SQL injection vulnerability in default.asp in Openasp 3.0 and earlier allows remote attackers to execute arbitrary SQL commands via the idpage parameter in the pages module.

Vulnerable Systems

Application

  • Openasp 3.0


References

XF - openasp-idpage-sql-injection(46648)

BID - 32322

MILW0RM - 7137

SECUNIA - 32750


Last Updated: 27 May 2016 10:49:08