Vulnerabilities > CVE-2006-5954 - Unspecified vulnerability in Netvios
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN netvios
exploit available
Summary
SQL injection vulnerability in page.asp in NetVIOS 2.0 and earlier allows remote attackers to execute arbitrary SQL commands via the NewsID parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
description NetVIOS <= 2.0 (page.asp) Remote SQL Injection Vulnerability. CVE-2006-5954,CVE-2007-1566. Webapps exploit for asp platform file exploits/asp/webapps/2780.txt id EDB-ID:2780 last seen 2016-01-31 modified 2006-11-14 platform asp port published 2006-11-14 reporter ajann source https://www.exploit-db.com/download/2780/ title NetVIOS <= 2.0 page.asp Remote SQL Injection Vulnerability type webapps description NetVios Portal (page.asp) Remote SQL Injection Vulnerability. CVE-2006-5954,CVE-2007-1566. Webapps exploit for asp platform file exploits/asp/webapps/3520.txt id EDB-ID:3520 last seen 2016-01-31 modified 2007-03-19 platform asp port published 2007-03-19 reporter parad0x source https://www.exploit-db.com/download/3520/ title NetVios Portal page.asp Remote SQL Injection Vulnerability type webapps
References
- http://secunia.com/advisories/22901
- http://secunia.com/advisories/22901
- http://www.osvdb.org/30411
- http://www.osvdb.org/30411
- http://www.securityfocus.com/bid/21088
- http://www.securityfocus.com/bid/21088
- http://www.vupen.com/english/advisories/2006/4517
- http://www.vupen.com/english/advisories/2006/4517
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30277
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30277
- https://www.exploit-db.com/exploits/2780
- https://www.exploit-db.com/exploits/2780