Dreamweaver Server Behavior SQL Injection Vulnerability

Secunia ID	SA20054
CVE-ID	CVE-2006-2042
Release Date	10 May 2006
Last Change	11 May 2006
Criticality	Moderately Critical
Solution Status	Vendor Workaround
Software	Macromedia Dreamweaver 8.x Macromedia Dreamweaver MX Macromedia Dreamweaver MX 2004 Macromedia Dreamweaver UltraDev 4
Where	From remote
Impact	Manipulation of data This includes vulnerabilities where a user or a remote attacker can manipulate local data on a system, but not necessarily be able to gain escalated privileges or system access. The most frequent type of vulnerabilities with this impact are SQL-injection vulnerabilities, where a malicious user or person can manipulate SQL queries.
Description	Brian Gallagher has reported a vulnerability in Dreamweaver, which can be exploited by malicious people to conduct SQL injection attacks. The vulnerability is caused due to missing sanitation of the code generated by Dreamweaver server behaviours for various server models. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
Solution	Users of Dreamweaver 8 should update to version 8.0.2. http://www.adobe.com/support/dreamweaver/downloads_updaters.html#dw8 Dreamweaver MX 2004, MX, and Ultradev users should follow the published instructions for updating the code: http://www.adobe.com/go/300b670e
Reported by	Brian Gallagher
Original Advisory	Adobe: http://www.adobe.com/support/security/bulletins/apsb06-07.html