News Document Title:
====================
Vulnerability in AirPort DuesselDorf closed by DUS INT Team


Release Date:
=============
2012-01-13


Laboratory Article:
===================
An anonymous vulnerability laboratory researcher discovered this week multiple critical sql injection vulnerabilities on the 
famous Duesseldorf Airport Server System and Web-Server.The remote vulnerability allows an remote attacker to execute 
own sql commands on the vulnerable value or module.
Successful exploitation of the remote SQL Injection vulnerabilities can result in access to all db tables, read sensitive information 
like customer  passwords, usernames and Co. The vulnerabilities has been patched within 1 year and the issue was 
published yesterday [2012-01-13].


Vulnerable Module(s): 

			[+] Fotoarchiv
			[+] Shoplist
			[+] Media info


Advisory:		http://www.vulnerability-lab.com/get_content.php?id=173