Vulnerability Description
SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote attackers to execute arbitrary SQL queries via the cat parameter.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Mac Os X | 10.4.9 |
| Hp | Hp-Ux | All versions |
| Hp | Tru64 | 5.1b_pk2_bl22 |
| Ibm | Aix | All versions |
| Ibm | Os2 | All versions |
| Linux | Linux Kernel | All versions |
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows 2003 Server | sp2 |
| Microsoft | Windows 95 | All versions |
| Microsoft | Windows 98 | All versions |
| Microsoft | Windows 98Se | All versions |
| Microsoft | Windows Me | All versions |
| Microsoft | Windows Nt | 4.0 |
| Microsoft | Windows Xp | All versions |
| Santa Cruz Operation | Sco Unix | All versions |
| Sun | Solaris | All versions |
| Windriver | Bsdos | All versions |
| Super Link Exchange Script | Super Link Exchange Script | 1.0 |
References
- http://securityreason.com/securityalert/2285
- http://www.securityfocus.com/archive/1/435166/30/4680/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26720
- http://securityreason.com/securityalert/2285
- http://www.securityfocus.com/archive/1/435166/30/4680/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26720
FAQ
What is CVE-2006-7034?
CVE-2006-7034 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in directory.php in Super Link Exchange Script 1.0 might allow remote attackers to execute arbitrary SQL queries via the cat parameter.
How severe is CVE-2006-7034?
CVE-2006-7034 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-7034?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Mac Os X, Hp Hp-Ux, Hp Tru64, Ibm Aix, Ibm Os2.