Vulnerability Description
SQL injection vulnerability in login.asp in an unknown product by Online Solutions for Educators (OS4E) allows remote attackers to execute arbitrary SQL commands via the password.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Online Solutions For Educators | Online Solutions For Educators | All versions |
References
- http://securitytracker.com/id?1014072Vendor Advisory
- http://www.securityfocus.com/bid/13804Vendor Advisory
- http://www.under9round.com/os4e.txtVendor AdvisoryURL Repurposed
- http://www.vupen.com/english/advisories/2005/0645
- http://securitytracker.com/id?1014072Vendor Advisory
- http://www.securityfocus.com/bid/13804Vendor Advisory
- http://www.under9round.com/os4e.txtVendor AdvisoryURL Repurposed
- http://www.vupen.com/english/advisories/2005/0645
FAQ
What is CVE-2005-1805?
CVE-2005-1805 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in login.asp in an unknown product by Online Solutions for Educators (OS4E) allows remote attackers to execute arbitrary SQL commands via the password.
How severe is CVE-2005-1805?
CVE-2005-1805 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1805?
Check the references section above for vendor advisories and patch information. Affected products include: Online Solutions For Educators Online Solutions For Educators.