Campaign Enterprise Multiple Security Vulnerabilities Network Vulnerability

Summary

Campaign Enterprise is prone to multiple security vulnerabilities including: 1. Multiple security-bypass vulnerabilities 2. Multiple information-disclosure vulnerabilities 3. Multiple SQL injection vulnerabilities Attackers can exploit these issues to bypass certain security restrictions, obtain sensitive information, and carry out unauthorized actions on the underlying database. Other attacks may also be possible. Campaign Enterprise 11.0.538 is vulnerable.

Solution

Updates are available. Please see the references for more information.

References

http://www.arialsoftware.com/enterprise.htm
http://www.securityfocus.com/bid/56117

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-3820, CVE-2012-3821, CVE-2012-3822, CVE-2012-3823, CVE-2012-3824
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

A-A-S Application Access Server Multiple Vulnerabilities
Adobe ColdFusion Directory Traversal Vulnerability
AdaptBB Multiple Input Validation Vulnerabilities
ActualAnalyzer Lite 'ant' Cookie Parameter Remote Command Execution Vulnerability
Apache Tomcat /servlet Cross Site Scripting

Take action and discover your vulnerabilities