|
|
CVE Reference: CVE-2006-6367 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-6367 |
|
|
Description: Multiple SQL injection vulnerabilities in detail.asp in DUware DUdownload 1.1, and possibly earlier, allow remote attackers to execute arbitrary SQL commands via the (1) iFile or (2) action parameter. NOTE: the iType parameter is already covered by CVE-2005-3976. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/30669 SAID Secunia Advisory: SA23224 MISC http://www.aria-security.com/forum/showthread.php?t=60 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=116508632603388&w=2 BID 21405 |
|
| Return to the previous page. |
