Vulnerabilities > CVE-2006-2123 - SQL Injection vulnerability in Network Administration Visualized Network Administration Visualized 3.0

CVSS 6.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

network-administration-visualized

NVD

Published: 2006-05-01

Updated: 2017-07-20

Summary

Multiple SQL injection vulnerabilities in the report interface in Network Administration Visualized (NAV) before 3.0.1 allow remote attackers to execute arbitrary SQL commands via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Network_Administration_Visualized Network Administration Visualized Network Administration Visualized 3.0	1

References

http://secunia.com/advisories/19849
http://sourceforge.net/project/shownotes.php?release_id=413412
http://www.osvdb.org/25066
http://www.securityfocus.com/bid/17734
http://www.vupen.com/english/advisories/2006/1572
https://exchange.xforce.ibmcloud.com/vulnerabilities/26151