[Secure-testing-team] Bug#531735: SA35311: OCS Inventory NG "systemid" SQL Injection Vulnerability
Giuseppe Iuculano
giuseppe at iuculano.it
Wed Jun 3 16:47:18 UTC 2009
Package: ocsinventory-server
Severity: serious
Tags: security
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Hi,
The following SA (Secunia Advisory) id was published for OCS Inventory NG:
SA35311[0]:
Description:
Nico Leidecker has discovered a vulnerability in OCS Inventory NG, which can be exploited by malicious people to conduct SQL injection attacks.
Input passed to the "systemid" parameter in group_show.php is not properly sanitised before being used in an SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
The vulnerability is confirmed in version 1.02.1. Other versions may also be affected.
If you fix the vulnerability please also make sure to include the CVE id
(if will be available) in the changelog entry.
[0]http://secunia.com/advisories/35311/
http://archives.neohapsis.com/archives/bugtraq/2009-06/0009.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAkomqRMACgkQNxpp46476aoYVwCgmN0vbbDxla23o2jNJ68eOVHB
yhAAnRaoQCIGLVDmO4VvwMCp0h11Dj7d
=bXC2
-----END PGP SIGNATURE-----
More information about the Secure-testing-team
mailing list