CVE-2010-0469

Sažetak

SQL injection vulnerability in Files2Links F2L 3000 appliance 4.0.0, and possibly other versions and models, allows remote attackers to execute arbitrary SQL commands via unspecified parameters to the login page.

Reference

http://archives.neohapsis.com/archives/fulldisclosure/2010-01/0499.html
http://osvdb.org/61976
http://packetstormsecurity.org/1001-advisories/DDIVRT-2009-27.txt
http://secunia.com/advisories/38310
https://exchange.xforce.ibmcloud.com/vulnerabilities/55950

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

17-08-2017 - 01:32

Objavljeno

02-02-2010 - 17:30