CVE-2005-4662

Properties

Published:
30.12.2005
Updated:
17.01.2006
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:L/Au:NR/C:N/I:P/A:N/B:N)
    Product:
    OcoMon: OcoMon
    OcoMon: OcoMon
    OcoMon: OcoMon
    OcoMon: OcoMon
    OcoMon: OcoMon
    OcoMon: OcoMon

    Vulnerability description

    Multiple SQL injection vulnerabilities in OcoMon 1.20, and possibly earlier versions, allow remote attackers to execute arbitrary SQL commands via unknown attack vectors in an unspecified input form, a different vulnerability than CVE-2005-4664.

    References:

    http://sourceforge.net/project/shownotes.php?release_id=369163: http://sourceforge.net/project/shownotes.php?release_id=369163
    http://sourceforge.net/project/showfiles.php?group_id=45554: http://sourceforge.net/project/showfiles.php?group_id=45554
    BID: http://www.securityfocus.com/bid/15386
    OSVDB: http://www.osvdb.org/20751
    SECUNIA: http://secunia.com/advisories/17470
    XF: http://xforce.iss.net/xforce/xfdb/23085