logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2011-2688

Description

SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.


Affected Package


OS OS Version Package Name Package Version
ubuntu 10.04 libapache2-mod-authnz-external 3.2.4-2+squeeze1build0.10.04.1
ubuntu 10.10 libapache2-mod-authnz-external 3.2.4-2+squeeze1build0.10.10.1
ubuntu 11.04 libapache2-mod-authnz-external 3.2.4-2+squeeze1build0.11.04.1
ubuntu upstream libapache2-mod-authnz-external 3.2.4-2.1

Related