Arbitrary SQL Code Execution Vulnerability in e-Zone Media Fuse Talk

Arbitrary SQL Code Execution Vulnerability in e-Zone Media Fuse Talk

CVE-2001-0848 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

join.cfm in e-Zone Media Fuse Talk allows a local user to execute arbitrary SQL code via a semi-colon (;) in a form variable.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.