RE: [Ntsug-users] Base 1.2 Vuln

["Patrick Harper" <patrick () internetsecurityguru com>]

This has been a known issue for a while.  To quote Kevin (the lead developer
of base)

This issue has been brought up many times before, not by this guy) and is
CLEARLY documented in the README file since ACID was created.  To fix this
issue we need to completely rewrite the application and we are doing this
for 2.x.  Currently we are looking for a database expert to help with the
application. Do you know anyone?<g>) 

 
-----Original Message-----
From: ntsug-users-bounces () ntsug org [mailto:ntsug-users-bounces () ntsug org]
On Behalf Of Justin Heath
Sent: Friday, October 28, 2005 8:30 AM
To: Snort; General snort discussions
Subject: [Ntsug-users] Base 1.2 Vuln

I haven't seen any mention of this on the list, so I thought I would pass it
along.

Basic Analysis And Security Engine Base_qry_main.PHP SQL Injection
Vulnerability
http://www.securityfocus.com/bid/15199/info





-------------------------------------------------------
This SF.Net email is sponsored by the JBoss Inc.
Get Certified Today * Register for a JBoss Training Course
Free Certification Exam for All Training Attendees Through End of 2005
Visit http://www.jboss.com/services/certification for more information
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users