Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-189: SQL Injectionin Cisco Unified Communications Manager

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-189: SQL Injectionin Cisco Unified Communications Manager
# 1  
Old 02-15-2008
S-189: SQL Injectionin Cisco Unified Communications Manager
Cisco Unified Communications Manager is vulnerable to a SQL Injection attack in the parameter key of the admin and user interface pages. A successful attack could allow an authenticated attacker to access information such as usernames and password hashes that are stored in the database. The risk is LOW. An authenticated attacker may be able to exploit this vulnerability to extract records from the Cisco Unified Communications Manager database. A successful attack might retrieve sensitive data such as user names, passwords hashes, and information from call records. An attacker cannot use this vulnerability to alter or delete call record information from the database.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT DEBIAN

sql::reservedwords::sqlserver

SQL::ReservedWords::SQLServer(3pm)			User Contributed Perl Documentation			SQL::ReservedWords::SQLServer(3pm)

NAME

       SQL::ReservedWords::SQLServer - Reserved SQL words by SQL Server

SYNOPSIS

	  if ( SQL::ReservedWords::SQLServer->is_reserved( $word ) ) {
	      print "$word is a reserved SQL Server word!";
	  }

DESCRIPTION

       Determine if words are reserved by SQL Server.

METHODS

       is_reserved( $word )
	   Returns a boolean indicating if $word is reserved by SQL Server 7, 2000 or 2005.

       is_reserved_by_sqlserver7( $word )
	   Returns a boolean indicating if $word is reserved by SQL Server 7.

       is_reserved_by_sqlserver2000( $word )
	   Returns a boolean indicating if $word is reserved by SQL Server 2000.

       is_reserved_by_sqlserver2005( $word )
	   Returns a boolean indicating if $word is reserved by SQL Server 2005.

       reserved_by( $word )
	   Returns a list with SQL Server versions that reserves $word.

       words
	   Returns a list with all reserved words.

EXPORTS

       Nothing by default. Following subroutines can be exported:

       is_reserved
       is_reserved_by_sqlserver7
       is_reserved_by_sqlserver2000
       is_reserved_by_sqlserver2005
       reserved_by
       words

SEE ALSO

       http://msdn2.microsoft.com/en-us/library/ms130214.aspx

AUTHOR

       Christian Hansen "chansen@cpan.org"

COPYRIGHT

       This program is free software, you can redistribute it and/or modify it under the same terms as Perl itself.

perl v5.8.8							    2008-03-28					SQL::ReservedWords::SQLServer(3pm)