Описание
SQL injection vulnerability in the web framework in Cisco Unity Connection 9.1(2) and earlier allows remote authenticated users to execute arbitrary SQL commands via a crafted request, aka Bug ID CSCuq31016.
SQL injection vulnerability in the web framework in Cisco Unity Connection 9.1(2) and earlier allows remote authenticated users to execute arbitrary SQL commands via a crafted request, aka Bug ID CSCuq31016.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2014-3336
- https://exchange.xforce.ibmcloud.com/vulnerabilities/95187
- http://secunia.com/advisories/59498
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3336
- http://tools.cisco.com/security/center/viewAlert.x?alertId=35228
- http://www.securityfocus.com/bid/69163
- http://www.securitytracker.com/id/1030704
Связанные уязвимости
nvd
больше 11 лет назад
SQL injection vulnerability in the web framework in Cisco Unity Connection 9.1(2) and earlier allows remote authenticated users to execute arbitrary SQL commands via a crafted request, aka Bug ID CSCuq31016.