CGI abuses : iiprotect sql injection

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.11662

Category: CGI abuses

Title: iiprotect sql injection

Summary: NOSUMMARY

Description: Description:

The remote host is running iisprotect, an IIS add-on to protect the
pages served by this server.

There is a bug in the remote version of iisprotect which may allow
an attacker who has the ability to browse the administrative
interface to execute arbitrary commands through SQL injection
on this host.

Solution : Upgrade to the latest version of IISprotect
Risk factor : High

Cross-Ref: BugTraq ID: 7675
Common Vulnerability Exposure (CVE) ID: CVE-2003-0377
Bugtraq: 20030523 iisPROTECT SQL injection in admin interface (Google Search)
http://marc.info/?l=bugtraq&m=105370528728225&w=2

Copyright This script is Copyright (C) 2003 Tenable Network Security

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.11662
Category:	CGI abuses
Title:	iiprotect sql injection
Summary:	NOSUMMARY
Description:	Description: The remote host is running iisprotect, an IIS add-on to protect the pages served by this server. There is a bug in the remote version of iisprotect which may allow an attacker who has the ability to browse the administrative interface to execute arbitrary commands through SQL injection on this host. Solution : Upgrade to the latest version of IISprotect Risk factor : High
Cross-Ref:	BugTraq ID: 7675 Common Vulnerability Exposure (CVE) ID: CVE-2003-0377 Bugtraq: 20030523 iisPROTECT SQL injection in admin interface (Google Search) http://marc.info/?l=bugtraq&m=105370528728225&w=2
Copyright	This script is Copyright (C) 2003 Tenable Network Security