CVE

Id
71153  
CVE No.
CVE-2014-3857  
Status
Candidate  
Description
Multiple SQL injection vulnerabilities in Kerio Control Statistics in Kerio Control (formerly WinRoute Firewall) before 8.3.2 allow remote authenticated users to execute arbitrary SQL commands via the (1) x_16 or (2) x_17 parameter to print.php.  
Phase
Assigned (20140523)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
676911 71153 CVE-2014-3857 BUGTRAQ:20140630 Kerio Control <= 8.3.1 Boolean-based blind SQL Injection  View
676912 71153 CVE-2014-3857 URL:http://www.securityfocus.com/archive/1/archive/1/532607/100/0/threaded  View
676913 71153 CVE-2014-3857 EXPLOIT-DB:33954  View
676914 71153 CVE-2014-3857 URL:http://www.exploit-db.com/exploits/33954  View
676915 71153 CVE-2014-3857 MISC:http://fereidani.com/articles/show/76_kerio_control_8_3_1_boolean_based_blind_sql_injection  View
676916 71153 CVE-2014-3857 MISC:http://packetstormsecurity.com/files/127320/Kerio-Control-8.3.1-Blind-SQL-Injection.html  View
676917 71153 CVE-2014-3857 CONFIRM:http://www.kerio.com/support/kerio-control/release-history  View
676918 71153 CVE-2014-3857 OSVDB:108584  View
676919 71153 CVE-2014-3857 URL:http://osvdb.org/show/osvdb/108584  View
676920 71153 CVE-2014-3857 SECUNIA:59215  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
13830 JVNDB-2014-002705 dpkg-dev の dpkg-source におけるディレクトリトラバーサルの脆弱性 dpkg-dev の dpkg-source には、ディレクトリトラバーサルの脆弱性が存在します。 CVE-2014-3865 71153 6.4 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-002705.html  View