Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-1909

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-1909
Last Modified 05 Jun 2009 12:00:00
Published 04 Jun 2009 12:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-1909

Summary

SQL injection vulnerability in Skip 1.0.2 and earlier, and 1.1RC2 and earlier 1.1RC versions, allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Systems

Application

  • Openskip Skip 0.9

  • Openskip Skip 1.0.0

  • Openskip Skip 1.0.1

  • Openskip Skip 1.0.2

  • Openskip Skip 1.1


References

JVN - JVN#03114223

BID - 34898

SECUNIA - 35041

CONFIRM - http://portal.openskip.org/top/releasenote-ver1-0-0

JVNDB - JVNDB-2009-000026

CONFIRM - http://dev.openskip.org/redmine/issues/show/677


Last Updated: 27 May 2016 10:50:42