Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Customers

Login Get Demo

Vulnerability IntelligenceCVE-2006-4041

CVE-2006-4041

UNKNOWN

SQL injection vulnerability in Pike before 7

Published Aug 9, 2006

Modified 1 years ago

Details

SQL injection vulnerability in Pike before 7.6.86, when using a Postgres database server, allows remote attackers to execute arbitrary SQL commands via unspecified attack vectors.

References

WEB

http://pike.ida.liu.se/download/notes/7.6.86.xml

ADVISORY

http://secunia.com/advisories/20494

ADVISORY

http://secunia.com/advisories/21362

ADVISORY

http://secunia.com/advisories/22481

ADVISORY

http://security.gentoo.org/glsa/glsa-200608-10.xml

WEB

http://www.securityfocus.com/bid/19367

ADVISORY

http://www.ubuntu.com/usn/usn-367-1

WEB

http://www.vupen.com/english/advisories/2006/2209

WEB

https://exchange.xforce.ibmcloud.com/vulnerabilities/26992

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2006-4041

CVSS Analysis

CVSS v2.0

7.5

Exploitability

Access Vector

NetworkAV:N

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

PartialC:P

Integrity

PartialI:P

Availability

PartialA:P

7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P

Ecosystems

Timeline

PublishedAug 9, 2006

ModifiedAug 7, 2024

CVE-2006-4041 | Mondoo Vulnerability Intelligence