Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6741

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6741
Last Modified 22 Apr 2009 12:00:00
Published 21 Apr 2009 02:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6741

Summary

SQL injection vulnerability in Load.php in Simple Machines Forum (SMF) 1.1.4 and earlier allows remote attackers to execute arbitrary SQL commands by setting the db_character_set parameter to a multibyte character set such as big5, which causes the addslashes PHP function to produce a "\" (backslash) sequence that does not quote the "'" (single quote) character, as demonstrated via a manlabels action to index.php.

Vulnerable Systems

Application

  • Simple Machines Forum 1.0.11

  • Simple Machines Forum 1.0.12

  • Simple Machines Forum 1.0.5

  • Simple Machines Forum 1.0.6

  • Simple Machines Forum 1.0.7

  • Simple Machines Forum 1.1

  • Simple Machines Forum 1.1.1

  • Simple Machines Forum 1.1.2

  • Simple Machines Forum 1.1.3

  • Simple Machines Forum 1.1.4


References

XF - smf-load-sql-injection(43118)

BID - 29734

MILW0RM - 5826


Last Updated: 27 May 2016 10:49:18