CVE-2016-6566

The Sungard eTRAKiT3 software version 3.2.1.17 may be vulnerable to SQL injection which may allow a remote unauthenticated attacker to run a subset of SQL commands against the back-end database

EPSS 11.8%CWE-89

Vexday Risk Score

28Low

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 11.8%KEV nãoPoC públicaNuclei —Metasploit —Patch —

Lifecycle

02 Jun 2017Public PoC

13 Jul 2018Published on NVD

Recommendation: Plan a near-term fix — a public PoC already exists.

The valueAsString parameter inside the JSON payload contained by the ucLogin_txtLoginId_ClientStat POST parameter of the Sungard eTRAKiT3 software version 3.2.1.17 is not properly validated. An unauthenticated remote attacker may be able to modify the POST request and insert a SQL query which may then be executed by the backend server. eTRAKiT 3.2.1.17 was tested, but other versions may also be vulnerable.

Affected products

Sungard · eTRAKiT3

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/42111unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.kb.cert.org/vuls/id/846103 http://www.securityfocus.com/bid/94696