Vulnerability   
Search   
    Search 202850 CVE descriptions
and 87302 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.16063
Category:CGI abuses
Title:Owl Multiple Vulnerabilities
Summary:NOSUMMARY
Description:Description:

The remote host is using owl intranet engine, an open-source file sharing
utility written in php.

The remote version of this software is vulnerable to various flaws which
may allow an attacker to execute arbitrary SQL statements against the
remote database or to perform a cross site scripting attack against third
party users by using the remote server.

Solution : Upgrade to Owl 0.74.0 or newer
Risk factor : Medium

Cross-Ref: BugTraq ID: 12114
Common Vulnerability Exposure (CVE) ID: CVE-2005-0265
http://www.securityfocus.com/bid/12114
Bugtraq: 20050101 Various Vulnerabilities in OWL Intranet Engine (Google Search)
http://marc.info/?l=bugtraq&m=110461644407935&w=2
http://secunia.com/advisories/13695
XForce ISS Database: owl-intranet-engine-sql-injection(18704)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18704
Common Vulnerability Exposure (CVE) ID: CVE-2005-0264
XForce ISS Database: owl-intranet-engine-xss(18705)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18705
CopyrightThis script is Copyright (C) 2004 Tenable Network Security

This is only one of 87302 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2021 E-Soft Inc. All rights reserved.