Published: 02/02/2006 Updated: 20/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

SQL injection vulnerability in the Authentication Servlet in Symantec Sygate Management Server (SMS) version 4.1 build 1417 and previous versions allows remote malicious users to execute arbitrary SQL commands and bypass authentication via unknown attack vectors related to a URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec sygate management server 4.1_ga_build_1258_japanese
symantec sygate management server 4.1_mr1_build_1351_chinese
symantec sygate management server 3.5_mr_3_build_894_english
symantec sygate management server 4.0_mr_1_build_1104_english
symantec sygate management server

## # This file is part of the Metasploit Framework and may be redistributed # according to the licenses defined in the Authors field below In the # case of an unknown or missing license, this file defaults to the same # license as the core Framework (dual GPLv2 and Artistic) The latest # version of the Framework can always be obtained from metasp ...

NVD-CWE-Other http://securityresponse.symantec.com/avcenter/security/Content/2006.02.01.html http://securitytracker.com/id?1015561 http://secunia.com/advisories/18689 http://www.securityfocus.com/bid/16452 http://www.osvdb.org/22883 http://www.vupen.com/english/advisories/2006/0402 https://exchange.xforce.ibmcloud.com/vulnerabilities/24413 https://nvd.nist.gov https://www.exploit-db.com/exploits/1680/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-0522

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect