Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1903

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-1903
Last Modified 31 May 2011 12:00:00
Published 05 May 2011 10:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1903

Summary

SQL injection vulnerability in an unspecified function in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary SQL commands via unknown vectors.

Vulnerable Systems

Application

  • Proofpoint Messaging Security Gateway 6.2.0.263%3a6.2.0.237

  • Proofpoint Protection Server 5.5.3

  • Proofpoint Protection Server 5.5.4

  • Proofpoint Protection Server 5.5.5

  • Proofpoint Protection Server 6.0.2

  • Proofpoint Protection Server 6.1.1

  • Proofpoint Protection Server 6.2.0


References

CERT-VN - VU#790980

MISC - https://support.proofpoint.com/article.cgi?article_id=338413

MISC - http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php


Last Updated: 27 May 2016 10:56:51