[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: New vulnerability in Xerox Fiery Webtools

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: New vulnerability in Xerox Fiery Webtools
From: laurent.hermelin@xxxxxxx
Date: Thu, 12 Nov 2009 08:21:42 -0700

There is no SQL Injection Vulnerability in WebTools as we are not using 
Database. MyDocs url ("/wt3/
summary.php?select=") is safe as "select" is just name of a variable and the 
name is nothing to do with select command in SQL.

Please provide details about the Fiery model and version so that we can close 
this report.

Prev by Date: [USN-858-1] OpenLDAP vulnerability
Next by Date: Re: XM Easy Personal FTP Server 'LIST' Command Remote DoS Vulnerability
Previous by thread: New vulnerability in Xerox Fiery Webtools
Next by thread: Re: Cherokee Web Server 0.5.4 Denial Of Service
Index(es):
- Date
- Thread