SQL Injection Vulnerability in Demarc PureSecure 1.05 Allows Remote Administrative Privilege Escalation

SQL Injection Vulnerability in Demarc PureSecure 1.05 Allows Remote Administrative Privilege Escalation

CVE-2002-0539 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.