CVE-2006-0522

Published: Feb 2, 2006Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

SQL injection vulnerability in the Authentication Servlet in Symantec Sygate Management Server (SMS) version 4.1 build 1417 and earlier allows remote attackers to execute arbitrary SQL commands and bypass authentication via unknown attack vectors related to a URL.

Affected (5)

Products: Symantec: Sygate Management Server

1 product

Sygate Management Server

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Symantec Sygate Management Server	Up to 4.1_mr_2_build_1417_english
Symantec Sygate Management Server	Version 3.5_mr_3_build_894_english
Symantec Sygate Management Server	Version 4.0_mr_1_build_1104_english
Symantec Sygate Management Server	Version 4.1_ga_build_1258_japanese
Symantec Sygate Management Server	Version 4.1_mr1_build_1351_chinese

References (14)

http://secunia.com/advisories/18689

Source: cve@mitre.org

http://securityresponse.symantec.com/avcenter/security/Content/2006.02.01.html

Source: cve@mitre.org

PatchVendor Advisory

http://securitytracker.com/id?1015561

Source: cve@mitre.org

http://www.osvdb.org/22883

Source: cve@mitre.org

http://www.securityfocus.com/bid/16452

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/0402

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/24413

Source: cve@mitre.org

http://secunia.com/advisories/18689

Source: af854a3a-2127-422b-91ae-364da2661108

http://securityresponse.symantec.com/avcenter/security/Content/2006.02.01.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://securitytracker.com/id?1015561

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/22883

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/16452

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2006/0402

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/24413

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.