< Back to JetLib.com

jetlib.sec » Full Disclosure » ZDI-12-024 : Total Defense Suite UNC Management Web Service uncsp_ViewReportsHomepage SQL Injection Vulnerability

« Expand/Collapse

Full Disclosure

February 08, 2012
ZDI-12-024 : Total Defense Suite UNC Management Web Service uncsp_ViewReportsHomepage SQL Injection Vulnerability

Posted: February 8th, 2012, 9:33am PST

Tags:

Posted by ZDI Disclosures on Feb 08
ZDI-12-024 : Total Defense Suite UNC Management Web Service
uncsp_ViewReportsHomepage SQL Injection Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-12-024
February 8, 2012

-- CVE ID:

-- CVSS:
7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P

-- Affected Vendors:

Total Defense

-- Affected Products:

Total Defense CA Total Defense

-- TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this...

← ZDI-12-023 : Total Defense Suite UNC ... ZDI-12-025 : EMC Networker indexd.exe... →