CVE-2011-1390

Currently unrated

Key Information:

Vendor: IBM
Status: Rational Clearquest
Vendor: CVE Published:; 14 May 2012

Summary

SQL injection vulnerability in the Maintenance tool in IBM Rational ClearQuest 7.1.1.x before 7.1.1.9, 7.1.2.x before 7.1.2.6, and 8.x before 8.0.0.2 allows remote attackers to execute arbitrary SQL commands by leveraging an error in the user-database upgrade feature.

References

http://osvdb.org/81815

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/53483

vdb-entryx_refsource_BID

http://www.securitytracker.com/id?1027060

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
May 14, 2012
Vulnerability Reserved
Mar 10, 2011