Demarc PureSecure 1.05 allows remote attackers to gain administrative privileges via a SQL injection attack in a session ID that is stored in the s_key cookie.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Puresecure | Demarc_security | 1.0.5_for_unix | 1.0.5_for_unix |
Puresecure | Demarc_security | 1.0.5_for_windows | 1.0.5_for_windows |