NVD

Id
50257  
Name
CVE-2009-3042  
Description
SQL injection vulnerability in machine.php in Open Computer and Software (OCS) Inventory NG 1.02.1 allows remote attackers to execute arbitrary SQL commands via the systemid parameter, a different vector than CVE-2009-3040.  
Reject
 
CVSS Version
2  
CVSS Score
7.5  
Severity
High  
CVSS Base Score
7.5  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-07  
Published
2009-09-01  
Modified Date
2009-09-02  
Seq
2009-3042  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
254392 50257 CVE-2009-3042 20090811 Sql injection in OCS Inventory NG Server 1.2.1  View
254393 50257 CVE-2009-3042 9416  View
254394 50257 CVE-2009-3042 http://www.ocsinventory-ng.org/index.php?mact=News,cntnt01,detail,0&cntnt01articleid=147&cntnt01returnid=15  View
254395 50257 CVE-2009-3042 20090811 Sql injection in OCS Inventory NG Server 1.2.1  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
43903 JVNDB-2009-004910 OCS Inventory NG の machine.php における SQL インジェクションの脆弱性 Open Computer and Software (OCS) Inventory NG の machine.php には、SQL インジェクションの脆弱性が存在します。 CVE-2009-3042 40473 CVE-2009-3042 50257 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004910.html 2009-09-01 2012-09-25 View