{ "id": "CVE-2004-2562", "sourceIdentifier": "cve@mitre.org", "published": "2004-12-31T05:00:00.000", "lastModified": "2024-11-20T23:53:40.417", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "SQL injection vulnerability in jobedit.asp in Leigh Business Enterprises (LBE) Web Helpdesk before 4.0.0.81 allows remote attackers to execute arbitrary SQL commands via the id parameter." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "baseScore": 7.5, "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "availabilityImpact": "PARTIAL" }, "baseSeverity": "HIGH", "exploitabilityScore": 10.0, "impactScore": 6.4, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:1.2_1999-07-00:*:*:*:*:*:*:*", "matchCriteriaId": "E14C2EF2-8E1C-4598-8114-5C4EA3A908EE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:1.3_2000-07-00:*:*:*:*:*:*:*", "matchCriteriaId": "EED53448-FD95-4FB8-942D-3768C608EBA8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:1.4_2000-08-00:*:*:*:*:*:*:*", "matchCriteriaId": "89A2AE0B-33F7-4765-BD40-0E063356A8C1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.33_2001-05-00:*:*:*:*:*:*:*", "matchCriteriaId": "2975EB4C-DF93-45A1-81BF-E830DF0A8074" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.35_2001-06-04:*:*:*:*:*:*:*", "matchCriteriaId": "E4F3DE54-BD73-4ADE-B3F0-E5F5EA686A4F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.38_2001-06-10:*:*:*:*:*:*:*", "matchCriteriaId": "512D3FFA-3EA2-4F8E-8956-AED7BB5A7639" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.40_2001-07-21:*:*:*:*:*:*:*", "matchCriteriaId": "0E09E45D-9B3F-4B8C-AEF2-0DBD41CD82E2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.41_2001-08-27:*:*:*:*:*:*:*", "matchCriteriaId": "6850C288-2D69-4F8A-9569-80E020FB66E4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.43_2001-09-28:*:*:*:*:*:*:*", "matchCriteriaId": "C3B8EA89-D147-434E-A93B-34EFAC21C774" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.50:*:*:*:*:*:*:*", "matchCriteriaId": "E9328DD9-E972-40E5-86F0-B8FB8DE299A6" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.52:*:*:*:*:*:*:*", "matchCriteriaId": "D32BEC7A-3DCB-4CAC-B1B7-5A9830631A7D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.53:*:*:*:*:*:*:*", "matchCriteriaId": "0F4FB46D-9196-4F03-BE6B-485AF6624D61" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.54:*:*:*:*:*:*:*", "matchCriteriaId": "896A255A-4802-4861-B0B7-3ED2B7CFB670" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.59:*:*:*:*:*:*:*", "matchCriteriaId": "6A5D4E2F-A9AD-4085-A575-D7A2F0DC6F0F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.60:*:*:*:*:*:*:*", "matchCriteriaId": "350BF11D-E6E5-4E1B-BEE1-8F4F41ADAFA3" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.61:*:*:*:*:*:*:*", "matchCriteriaId": "47625CEF-A839-4501-A345-79AE6C43C49B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.62:*:*:*:*:*:*:*", "matchCriteriaId": "DCFB8EA5-130D-4F29-A537-91A69B82321E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.63:*:*:*:*:*:*:*", "matchCriteriaId": "20AD434B-1026-4D25-BBF4-88E230F651C9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.64:*:*:*:*:*:*:*", "matchCriteriaId": "70B3D547-6C05-49C0-8CD4-BAB334E5699F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.65:*:*:*:*:*:*:*", "matchCriteriaId": "0490F0BB-4955-4D5F-942E-89CDCB37360E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.66:*:*:*:*:*:*:*", "matchCriteriaId": "648DE574-FFFD-48F3-BA38-E22C3DF06344" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.67:*:*:*:*:*:*:*", "matchCriteriaId": "8386249D-BF4B-4BE6-BF11-C85480403871" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.68:*:*:*:*:*:*:*", "matchCriteriaId": "0E3ED5F4-AF63-40EA-8890-DC43C7104070" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.69:*:*:*:*:*:*:*", "matchCriteriaId": "2ECC447A-3AF0-4965-A3CE-2290F71A9EED" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.70:*:*:*:*:*:*:*", "matchCriteriaId": "8CA047CF-58F9-43D1-AC41-ECD7259C5C8A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.71:*:*:*:*:*:*:*", "matchCriteriaId": "C40972CC-4CC8-45B9-93D5-8F297F9A5600" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.72:*:*:*:*:*:*:*", "matchCriteriaId": "22BC50E6-05C0-4E0F-B9E6-3A20B672387D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.73:*:*:*:*:*:*:*", "matchCriteriaId": "6C8CFA8A-8C4D-4CF2-8DAB-E1E263511BA5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.74:*:*:*:*:*:*:*", "matchCriteriaId": "721E79DF-C3BB-4787-995D-8F997BF74B53" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.75:*:*:*:*:*:*:*", "matchCriteriaId": "4153C621-6FEB-4C54-9DFA-13DAE8022FDB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.76:*:*:*:*:*:*:*", "matchCriteriaId": "FC52032E-3C0E-423E-832B-C8FDD52361BE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.77:*:*:*:*:*:*:*", "matchCriteriaId": "4CBCB4EA-1895-4AFE-B410-AA5207734876" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.78:*:*:*:*:*:*:*", "matchCriteriaId": "1F209433-9848-47FE-8FEA-01AB7B58598E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.79:*:*:*:*:*:*:*", "matchCriteriaId": "BBE643D3-ECBD-413C-9878-9BFF80F1CA9A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0.0.80:*:*:*:*:*:*:*", "matchCriteriaId": "23114AD3-0687-4D0D-9E0C-5F87D9279ED9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:leigh_business_enterprises:web_helpdesk:4.0_2001-03-00:*:*:*:*:*:*:*", "matchCriteriaId": "C1FCD235-7582-4DFE-B805-709B1BDD3BF5" } ] } ] } ], "references": [ { "url": "http://secunia.com/advisories/12123", "source": "cve@mitre.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://www.lbehelpdesk.com/patch/web/history.txt", "source": "cve@mitre.org", "tags": [ "URL Repurposed" ] }, { "url": "http://www.osvdb.org/8181", "source": "cve@mitre.org" }, { "url": "http://www.securiteam.com/windowsntfocus/5QP0M0ADGI.html", "source": "cve@mitre.org", "tags": [ "Exploit", "Patch" ] }, { "url": "http://www.securityfocus.com/bid/10773", "source": "cve@mitre.org", "tags": [ "Exploit", "Patch" ] }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16779", "source": "cve@mitre.org" }, { "url": "http://secunia.com/advisories/12123", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://www.lbehelpdesk.com/patch/web/history.txt", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "URL Repurposed" ] }, { "url": "http://www.osvdb.org/8181", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "http://www.securiteam.com/windowsntfocus/5QP0M0ADGI.html", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Exploit", "Patch" ] }, { "url": "http://www.securityfocus.com/bid/10773", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Exploit", "Patch" ] }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16779", "source": "af854a3a-2127-422b-91ae-364da2661108" } ] }