IBM Net.Commerce orderdspc.d2w order_rn Option SQL Injection

high Nessus Plugin ID 11020

Synopsis

The remote service is prone to SQL injection.

Description

The macro orderdspc.d2w in the remote IBM Net.Commerce 3x is vulnerable to a SQL injection attack via the 'order_rn' option.

An attacker may use it to abuse your database in many ways.

Solution

Upgrade to IBM WebSphere Commerce Suite version 5.1 or later.

See Also

http://www.nessus.org/u?6bddc034

Plugin Details

Severity: High

ID: 11020

File Name: netcommerce_sql.nasl

Version: 1.30

Type: remote

Family: CGI abuses

Published: 6/8/2002

Updated: 5/12/2022

Configuration: Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.0

CVSS v2

Risk Factor: High

Base Score: 7.5

Temporal Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: cpe:/a:ibm:net.commerce

Required KB Items: www/ibm-http

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2/5/2001

Reference Information

CVE: CVE-2001-0319

BID: 2350