GeoNetwork Opensource Login SQL Injection

2006-10-20T06:03:57
ID OSVDB:29939
Type osvdb
Reporter OSVDB
Modified 2006-10-20T06:03:57

Description

Solution Description

Upgrade to version 2.0.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://geonetwork-opensource.org/ Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=457195 Secunia Advisory ID:22502 FrSIRT Advisory: ADV-2006-4151 CVE-2006-5513 Bugtraq ID: 20671