CVE-2008-3370

EMC Centera Universal Access <4.0_4735.p4 - SQL Injection

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3370. PoCs published by Lars Heidelberg.

AI-analyzed exploit summary The provided text describes an SQL injection vulnerability in EMC Centera Universal Access (CUA) 4.0_4735.p4. It outlines the vulnerability's impact and provides a basic example of how to exploit it using a valid username and a password field with a SQL comment (--).

Description

SQL injection vulnerability in the CUA Login Module in EMC Centera Universal Access (CUA) 4.0_4735.p4 allows remote attackers to execute arbitrary SQL commands via the user (user name) field.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Lars Heidelberg · textwebappsphp

https://www.exploit-db.com/exploits/32113

View Code ZIP pw:eip

The provided text describes an SQL injection vulnerability in EMC Centera Universal Access (CUA) 4.0_4735.p4. It outlines the vulnerability's impact and provides a basic example of how to exploit it using a valid username and a password field with a SQL comment (--).

Classification

Writeup 90%

Attack Type

Sqli

Complexity

Trivial

Reliability

Theoretical

Target: EMC Centera Universal Access (CUA) 4.0_4735.p4

Auth required

Prerequisites: Valid username for the target system

MITRE ATT&CK