Cisco Network Admission Control Manager CVE-2013-1177 SQL Injection Vulnerability

Cisco Network Admission Control Manager is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data.

An attacker can exploit this issue by manipulating the SQL query logic to carry out unauthorized actions on the underlying database and execute arbitrary code.

This issue is tracked by Cisco BugID CSCub23095.


 

Privacy Statement
Copyright 2010, SecurityFocus