Cisco Network Admission Control Manager CVE-2013-1177 Multiple SQL Injection Vulnerabilities

Cisco Network Admission Control Manager is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data.

An attacker can exploit these issues by manipulating the SQL query logic to carry out unauthorized actions on the underlying database and execute arbitrary code.

This issue is tracked by Cisco BugID CSCub23095.


 

Privacy Statement
Copyright 2010, SecurityFocus