CVE-2011-1653

by Fred · 15/04/2011

Multiple SQL injection vulnerabilities in the Unified Network Control (UNC) Server in CA Total Defense (TD) r12 before SE2 allow remote attackers to execute arbitrary SQL commands via vectors involving the (1) UnAssignFunctionalRoles, (2) UnassignAdminRoles, (3) DeleteFilter, (4) NonAssignedUserList, (5) DeleteReportLayout, (6) DeleteReports, and (7) RegenerateReport stored procedures.

Date published : 2011-04-15

http://www.securityfocus.com/bid/47355

http://www.securityfocus.com/archive/1/517494/100/0/threaded

CVE-2011-1653

Similar

Recent Posts

Categories

CVE-2011-1653

Share this:

Similar

Recent Posts

Categories

Tags