Описание
SQL injection vulnerability in my.activation.php3 in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 allows remote attackers to execute arbitrary SQL commands via the state parameter.
SQL injection vulnerability in my.activation.php3 in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 allows remote attackers to execute arbitrary SQL commands via the state parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2012-1777
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74198
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74450
- https://www.sec-consult.com/files/20120328-0_F5_FirePass_SSL_VPN_unauthenticated_remote_root_v1.0.txt
- http://packetstormsecurity.org/files/111276/F5-FirePass-SSL-VPN-6.x-7.x-SQL-Injection.html
- http://seclists.org/fulldisclosure/2012/Mar/324
- http://secunia.com/advisories/48455
- http://support.f5.com/kb/en-us/solutions/public/13000/400/sol13463.html
- http://www.securitytracker.com/id?1026834
Связанные уязвимости
nvd
почти 14 лет назад
SQL injection vulnerability in my.activation.php3 in F5 FirePass 6.0.0 through 6.1.0 and 7.0.0 allows remote attackers to execute arbitrary SQL commands via the state parameter.