CVE-2004-1552 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-1552
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-1552

Description: SQL injection vulnerability in aspWebCalendar allows remote attackers to execute arbitrary SQL statements via (1) the username field on the login page or (2) the eventid parameter to calendar.asp.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/17506 http://xforce.iss.net/xforce/xfdb/33157 SAID Secunia Advisory: SA12651 Secunia Advisory: SA24622 MILW0RM http://www.milw0rm.com/exploits/3546 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=109604910025090&w=2 BID 11246 23098

Return to the previous page.