SQL Injection Vulnerability in Symantec IM Manager Remote Access
CVE-2011-0553

Currently unrated

Key Information:

Vendor: Symantec
Status: Im Manager
Vendor: CVE Published:; 2 October 2011

Summary

A SQL injection vulnerability exists in the management console of Symantec IM Manager prior to version 8.4.18, enabling remote attackers to exploit unspecified vectors to execute arbitrary SQL commands. This could lead to unauthorized access to sensitive data and compromise system integrity, highlighting the importance of timely patch management and robust security practices.

References

http://www.securityfocus.com/bid/49738

vdb-entryx_refsource_BID

http://securitytracker.com/id?1026130

vdb-entryx_refsource_SECTRACK

http://www.symantec.com/security_response/securityupdates...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 2, 2011
Vulnerability Reserved
Jan 20, 2011