Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6459

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6459
Last Modified 19 Aug 2009 01:23:52
Published 13 Mar 2009 06:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6459

Summary

SQL injection vulnerability in the auto BE User Registration (autobeuser) extension 0.0.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Systems

Application

  • Typo3 Autobeuser 0.0.2


References

XF - autobeuser-unspecified-sql-injection(45255)

BID - 31239

CONFIRM - http://typo3.org/teams/security/security-bulletins/typo3-20080919-1/

OSVDB - 48272


Last Updated: 27 May 2016 10:49:12