Lucene search

[email protected]CVE-2005-1639

HistoryOct 03, 2022 - 4:22 p.m.

CVE-2005-1639

2022-10-0316:22:43

[email protected]

web.nvd.nist.gov

cve-2005-1639

sql injection

sigmaweb.dll

sigma isp manager 6.6

remote attackers

execute arbitrary sql commands

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.6%

JSON

SQL injection vulnerability in Sigmaweb.DLL in Sigma ISP Manager 6.6 allows remote attackers to execute arbitrary SQL commands via the (1) username, (2) password, or (3) domain fields.

Affected configurations

NVD

Node

atinegarsigma_isp_managerRange≤6.6

CPENameOperatorVersion
atinegar:sigma_isp_manageratinegar sigma isp managerle6.6

CPE	Name	Operator	Version
atinegar:sigma_isp_manager	atinegar sigma isp manager	le	6.6

References

secunia.com/advisories/15379

www.osvdb.org/16620

www.under9round.com/sigma.txt

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

53.6%

JSON

Related for CVE-2005-1639

cvelist1 nvd1