Posted by ddivulnalert on Jan 23
Title-----
DDIVRT-2011-39 SolarWinds Storage Manager Server SQL Injection
Authentication Bypass
Severity
--------
High
Discovered By
-------------
Digital Defense, Inc. Vulnerability Research Team
Credit: r () b13$
Date Discovered
---------------
December 7, 2011
Vulnerability Description
-------------------------
The 'LoginServlet' page on port 9000 of the SolarWinds Storage Manager
Server is vulnerable to a SQL injection within...