CVE-2010-4284: SQL Injection
First published: Mon May 09 2011(Updated: )
SQL injection vulnerability in the authentication form in the integrated web server in the Data Management Server (DMS) before 1.4.3 in Samsung Integrated Management System allows remote attackers to execute arbitrary SQL commands via unspecified vectors.
Credit: cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Samsung Data Management Server | <=1.4.2 | |
| Samsung Data Management Server | =1.3.3 | |
| Samsung Data Management Server | =1.4.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/description
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/remedy
- agent/type
- agent/event
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/samsung
- canonical/samsung data management server
- version/samsung data management server/1.4.2
- version/samsung data management server/1.3.3
- version/samsung data management server/1.4.1