Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6434

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6434
Last Modified 02 Apr 2009 12:00:00
Published 06 Mar 2009 01:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6434

Summary

SQL injection vulnerability in index.cfm in Blue River Interactive Group Sava CMS before 5.0.122 allows remote attackers to execute arbitrary SQL commands via the LinkServID parameter.

Vulnerable Systems

Application

  • Blueriver Sava Cms 5.0


References

XF - savacms-index-sql-injection(49225)

BID - 29346

SECUNIA - 30367

OSVDB - 45616

MISC - http://holisticinfosec.org/content/view/67/45/


Last Updated: 27 May 2016 10:49:11