thr3ads.net - Secure testing team - [Secure-testing-team] Bug#637632: sql injection in package installer [Aug 2011]

If this information is useful, please help other people find it:
Share via:

Twitter
Facebook
Email

Ansgar Burchardt

2011-Aug-13 09:02 UTC

[Secure-testing-team] Bug#637632: sql injection in package installer

Package: src:dtc
Version: 0.32.10-2
Severity: critical
Tags: security upstream

SQL injection in the package installer:

$q = "SELECT DISTINCT db.Db,db.User FROM mysql.user,mysql.db WHERE
user.dtcowner=''$adm_login'' AND db .User=user.User AND
db.Db=''".$_REQUEST["database_name"]."'';";

Ansgar

Secure testing team - Aug 2011 - Bug#637632: sql injection in package installer

[Secure-testing-team] Bug#637632: sql injection in package installer