Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-3989

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-3989
Last Modified 12 Mar 2012 12:00:00
Published 04 Nov 2011 05:55:07
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-3989

Summary

SQL injection vulnerability in DBD::mysqlPP 0.04 and earlier allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Vulnerable Systems

Application

  • Hiroyuki Oyama Dbd%3a%3amysqlpp 0.01

  • Hiroyuki Oyama Dbd%3a%3amysqlpp 0.02

  • Hiroyuki Oyama Dbd%3a%3amysqlpp 0.03

  • Hiroyuki Oyama Dbd%3a%3amysqlpp 0.04


References

XF - dbdmysqlpp-unspecified-sql-injection(70680)

BID - 50139

JVNDB - JVNDB-2011-000086

JVN - JVN#51216285


Last Updated: 27 May 2016 10:57:48