Multiple SQL injection vulnerabilities in IBM Tivoli Provisioning Manager Express for Software DistributionID: oval:org.secpod.oval:def:4751 | Date: (C)2012-03-20 (M)2021-06-02 |
Class: VULNERABILITY | Family: windows |
The host is installed with IBM Tivoli Provisioning Manager Express for Software Distribution 4.1.1 and is prone to multiple SQL injection vulnerabilities. The flaws are present in the application, which fails to handle specially-crafted SQL statements. Successful exploitation allows remote attackers to execute arbitrary SQL commands.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows Server 2003 |
Microsoft Windows XP |
Product: |
IBM Tivoli Provisioning Manager Express for Software Distribution |