CVE-2005-1805 Information

Description

SQL injection vulnerability in login.asp in an unknown product by Online Solutions for Educators (OS4E) allows remote attackers to execute arbitrary SQL commands via the password.

Reference

http://securitytracker.com/id?1014072 http://www.securityfocus.com/bid/13804 http://www.under9round.com/os4e.txt http://www.vupen.com/english/advisories/2005/0645