Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-3343

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2009-3343
Last Modified 22 Jan 2011 01:32:32
Published 24 Sep 2009 12:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-3343

Summary

SQL injection vulnerability in details.asp in HotWeb Rentals allows remote attackers to execute arbitrary SQL commands via the PropId parameter.

Vulnerable Systems

Application

  • Hotwebscripts Hotweb Rentals


References

MILW0RM - 9675

SECUNIA - 36747


Last Updated: 27 May 2016 10:51:12