Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6365


Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6365
Last Modified 19 Jun 2009 12:00:00
Published 02 Mar 2009 11:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



SQL injection vulnerability in logon.jsp in Ad Server Solutions Ad Management Software Java allows remote attackers to execute arbitrary SQL commands via the (1) username and (2) password, related to the uname or pass parameters to logon.jsp or logon_processing.jsp. NOTE: some of these details are obtained from third party information.

Vulnerable Systems


  • Adserversolutions Ad Management Software -


XF - admanagement-logon-sql-injection(47282)

BID - 32790

MILW0RM - 7424

SECUNIA - 33072

Last Updated: 27 May 2016 10:49:10