ID de Prueba:	1.3.6.1.4.1.25623.1.0.103892
Categoría:	Web application abuses
Título:	Quest / Dell KACE K1000 Systems Management Appliance (SMA) <= 5.4.76847 Multiple SQLi Vulnerabilities
Resumen:	Quest / Dell KACE K1000 Systems Management Appliance (SMA) is; prone to multiple SQL injection (SQLi) vulnerabilities.
Descripción:	Summary: Quest / Dell KACE K1000 Systems Management Appliance (SMA) is prone to multiple SQL injection (SQLi) vulnerabilities. Vulnerability Insight: Quest / Dell KACE K1000 SMA is prone to multiple SQL injection vulnerabilities because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. Vulnerability Impact: Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. Affected Software/OS: Quest / Dell KACE K1000 SMA version 5.4.76847 and prior. Solution: Update to version 5.5 or later. CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-1671 BugTraq ID: 65029 http://www.securityfocus.com/bid/65029 http://www.baesystemsdetica.com.au/Research/Advisories/Dell-KACE-K1000-SQL-Injection-(DS-2014-001) http://secunia.com/advisories/56396 XForce ISS Database: kace-multiple-sql-injection(90592) https://exchange.xforce.ibmcloud.com/vulnerabilities/90592
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.