Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
 | Symantec Altiris DS SQL Injection Vulnerability | 9 Nov 201300:00 | – | zdt |
| Symantec Altiris DS SQL Injection Exploit | 13 Nov 201300:00 | – | zdt |
 | Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities | 18 Aug 200400:00 | – | nessus |
| Altiris Deployment Solution < 6.9.176 Multiple Vulnerabilities | 15 May 200800:00 | – | nessus |
 | CVE-2008-2286 | 13 Nov 201300:00 | – | circl |
 | CVE-2008-2286 | 18 May 200814:00 | – | cvelist |
 | Symantec Altiris DS - SQL Injection (Metasploit) | 13 Nov 201300:00 | – | exploitdb |
 | Symantec Altiris DS SQL Injection | 7 Nov 201323:34 | – | metasploit |
 | CVE-2008-2286 | 18 May 200814:20 | – | nvd |
 | Symantec Altiris DS SQL Injection | 9 Nov 201300:00 | – | packetstorm |
10
Node
| Source | Link |
|---|---|
| securityfocus | www.securityfocus.com/archive/1/492229/100/0/threaded |
| securityfocus | www.securityfocus.com/bid/29198 |
| zerodayinitiative | www.zerodayinitiative.com/advisories/ZDI-08-024/ |
| securityfocus | www.securityfocus.com/archive/1/492127/100/0/threaded |
| marc | www.marc.info/ |
| symantec | www.symantec.com/avcenter/security/Content/2008.05.14a.html |
| securitytracker | www.securitytracker.com/id |
| vupen | www.vupen.com/english/advisories/2008/1542/references |
| exploit-db | www.exploit-db.com/exploits/29552 |
| osvdb | www.osvdb.org/show/osvdb/45313 |
10
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| CPU-Arch | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| Processor-Speed | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| Processor | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| Processor-Arch | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| IP-Address | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| MAC-Address | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| Name | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| OS | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| Version | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
| LoggedIn | request body | axengine.exe/UpdateComputer | SQL injection via UpdateComputer notification requests in axengine.exe (Symantec Altiris Deployment Solution) leading to arbitrary SQL execution via unsanitized input fields. | CWE-89 |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
23 Apr 2026 00:35Current
8.2High risk
Vulners AI Score8.2
CVSS 27.5
EPSS0.39749