CVE-2002-0709

SQL injection vulnerabilities in the Web Reports Server for SurfControl SuperScout WebFilter allow remote attackers to execute arbitrary SQL queries via the RunReport option to SimpleBar.dll, and possibly other DLLs.

Published: Oct 10, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0709
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
surfcontrol / web_filter	4.1	4.1.x
surfcontrol / superscout_web_filter	3.0	3.0.x
surfcontrol / web_filter	4.0	4.0.x
surfcontrol / superscout_web_filter	3.0.3	3.0.3.x

http://marc.info/?l=bugtraq&m=103359690824103&w=2
http://www.iss.net/security_center/static/10245.php
http://www.securityfocus.com/bid/5859

Vulnerability Database

CVE-2002-0709