|
|
Mantis Account Update SQL Injection Vulnerability
|
Bugtraq ID:
|
5510
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2002-1110
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Aug 19 2002 12:00AM
|
|
Updated:
|
Jul 11 2009 03:56PM
|
|
Credit:
|
Announced by Jeroen Latour <jlatour@calaquendi.net>.
|
|
Vulnerable:
|
Mantis Mantis 0.17.2
Mantis Mantis 0.17.1
+
Debian Linux 3.0 sparc
+
Debian Linux 3.0 s/390
+
Debian Linux 3.0 ppc
+
Debian Linux 3.0 mipsel
+
Debian Linux 3.0 mips
+
Debian Linux 3.0 m68k
+
Debian Linux 3.0 ia-64
+
Debian Linux 3.0 ia-32
+
Debian Linux 3.0 hppa
+
Debian Linux 3.0 arm
+
Debian Linux 3.0 alpha
+
Debian Linux 3.0
Mantis Mantis 0.17 .0
Mantis Mantis 0.16.1
Mantis Mantis 0.16 .0
Mantis Mantis 0.15.12
Mantis Mantis 0.15.11
Mantis Mantis 0.15.10
Mantis Mantis 0.15.9
Mantis Mantis 0.15.8
Mantis Mantis 0.15.7
Mantis Mantis 0.15.6
Mantis Mantis 0.15.5
Mantis Mantis 0.15.4
Mantis Mantis 0.15.3
|
|
|
|
Not Vulnerable:
|
Mantis Mantis 0.17.4 a
Mantis Mantis 0.17.4
Mantis Mantis 0.17.3
|
|
|
