MidnightBSD

Advisories for authenex

CVE-2011-4801 HIGH

SQL injection vulnerability in akeyActivationLogin.do in Authenex Web Management Control in Authenex Strong Authentication System (ASAS) Server 3.1.0.2 and 3.1.0.3 allows remote attackers to execute arbitrary SQL commands via the username parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
authenex authenex_strong_authentication_system_server 3.1.0.3
authenex authenex_strong_authentication_system_server 3.1.0.2