Lucene search

[email protected]CVE-2005-4770

HistoryApr 07, 2006 - 10:00 a.m.

CVE-2005-4770

2006-04-0710:00:00

[email protected]

web.nvd.nist.gov

cve-2005-4770

sql injection

accelerated enterprise solutions

remote attackers

arbitrary commands

security vulnerability

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.2%

JSON

SQL injection vulnerability in an unspecified Accelerated Enterprise Solutions product, possibly Accelerated E Solutions, allows remote attackers to execute arbitrary SQL commands via the password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Affected configurations

NVD

Node

accelerated_enterprise_solutionsaccelerated_e_solutions

CPENameOperatorVersion
accelerated_enterprise_solutions:accelerated_e_solutionsaccelerated enterprise solutions accelerated e solutionseq*

CPE	Name	Operator	Version
accelerated_enterprise_solutions:accelerated_e_solutions	accelerated enterprise solutions accelerated e solutions	eq	*

References

www.osvdb.org/26548

www.securityfocus.com/bid/15077

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.8 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

52.2%

JSON

Related for CVE-2005-4770

nvd1 cvelist1