Launchpad CVE tracker

CVE 2011-2688

SQL injection vulnerability in mysql/mysql-auth.pl in the mod_authnz_external module 3.2.5 and earlier for the Apache HTTP Server allows remote attackers to execute arbitrary SQL commands via the user field.

See the

CVE page on Mitre.org for more details.

References

MISC: http://anders.fix.no/s...
MISC: http://secunia.com/adv...
MISC: http://www.securityfoc...
MISC: http://www.debian.org/...
MISC: http://www.openwall.co...
MISC: http://www.openwall.co...
MISC: http://bugs.debian.org...
MISC: http://code.google.com...
MISC: https://exchange.xforc...

Launchpad.net

CVE 2011-2688

Related bugs

References