Vulnerability Details CVE-2010-3076
The filter function in php/src/include.php in Simple Management for BIND (aka smbind) before 0.4.8 does not anchor a certain regular expression, which allows remote attackers to conduct SQL injection attacks and execute arbitrary SQL commands via the username parameter to the admin login page.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 62.4%
CVSS Severity
CVSS v2 Score 7.5
References
- http://packetstormsecurity.org/1009-exploits/smbind-sql.txt
- http://sourceforge.net/projects/smbind/files/smbind/0.4.8/smbind-0.4.8.tar.bz2/download
- http://www.debian.org/security/2010/dsa-2103
- http://www.openwall.com/lists/oss-security/2010/09/05/5
- http://www.openwall.com/lists/oss-security/2010/09/07/10
- http://packetstormsecurity.org/1009-exploits/smbind-sql.txt
- http://sourceforge.net/projects/smbind/files/smbind/0.4.8/smbind-0.4.8.tar.bz2/download
- http://www.debian.org/security/2010/dsa-2103
- http://www.openwall.com/lists/oss-security/2010/09/05/5
- http://www.openwall.com/lists/oss-security/2010/09/07/10
Products affected by CVE-2010-3076
-
cpe:2.3:a:blentz:smbind:*
-
cpe:2.3:a:blentz:smbind:0.2
-
cpe:2.3:a:blentz:smbind:0.2.1
-
cpe:2.3:a:blentz:smbind:0.3.1
-
cpe:2.3:a:blentz:smbind:0.4
-
cpe:2.3:a:blentz:smbind:0.4.1
-
cpe:2.3:a:blentz:smbind:0.4.2
-
cpe:2.3:a:blentz:smbind:0.4.3
-
cpe:2.3:a:blentz:smbind:0.4.4
-
cpe:2.3:a:blentz:smbind:0.4.5
-
cpe:2.3:a:blentz:smbind:0.4.6