Olate Download download.php SQL injection
| olatedownload-download-sql-injection (36214) |  Medium Risk |
Description:
Olate Download is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements to the download.php script using an unspecified parameter, which could allow the attacker to view, add, modify or delete information in the back-end database.
Platforms Affected:
- Olate, Olate Download 3.4.2
Remedy:
Upgrade to the latest version of Olate (3.4.2 or later), available from the Olate Web site. See References.
Consequences:
Data Manipulation
References:
- imei Addmimistrator¿s BugBlog, Wednesday, August 22nd, 2007 at 9:28 pm, Olate Download 3.4.2~download.php ~ sql injection at http://myimei.com/security/2007-08-22/olate-download-342downloadphp-sql-injection.html.
- Olate Download, Olate - Olate Download - PHP Bug Tracking, PHP Licensing, Bug Tracker, Software Licensing, Developer Tools at http://www.olate.co.uk/products/od/.
- BID-25410: Olate Download Download.PHP Multiple SQL Injection Vulnerabilities
- CVE-2007-4540: Multiple SQL injection vulnerabilities in download.php in Olate Download (od) 3.4.2 allow remote attackers to execute arbitrary SQL commands via the (1) HTTP_REFERER or (2) HTTP_USER_AGENT HTTP header.
Reported:
Aug 22, 2007
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net