CVE-2010-0147

SQL injection vulnerability in the Management Center for Cisco Security Agents 5.1 before 5.1.0.117, 5.2 before 5.2.0.296, and 6.0 before 6.0.1.132 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

Severity	MEDIUM
CVSS	6.5
CWE	CWE-89
KEV
Published	16 years ago
Modified	2 weeks ago

Related Products

Product	Advisory	Evidence
Cisco Unity Connection	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unity Bridge	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unity	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unified MeetingPlace	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unified IP IVR	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unified Customer Voice Portal (CVP)	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unified Contact Center Express	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unified Contact Center	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Unified Communications Manager	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Security Manager	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Security Agent	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Secure Access Control Server Solution Engine (ACSE)	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Personal Assistant	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Internet Service Node (ISN)	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Intelligent Contact Manager (ICM)	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco IP Queue Manager	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Emergency Responder	cisco-sa-20100217-csa	Cisco OpenVuln
Cisco Conference Connection	cisco-sa-20100217-csa	Cisco OpenVuln