CVE-2012-2576
critical
CVSS v3
9.8
CVSS v2
10.0
VIR risk
9.8
Description
SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager before 5.1.2, SolarWinds Storage Profiler before 5.1.2, and SolarWinds Backup Profiler before 5.1.2 allows remote attackers to execute arbitrary SQL commands via the loginName field.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cret@cert.org — http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/vulnerability.htm
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| solarwinds | backup_profiler | {"endExcluding":"5.1.2"} | 5.1.2 |
| solarwinds | storage_manager | {"endExcluding":"5.1.2"} | 5.1.2 |
| solarwinds | storage_profiler | {"endExcluding":"5.1.2"} | 5.1.2 |
References
- http://www.exploit-db.com/exploits/18818
- http://www.exploit-db.com/exploits/18833
- http://www.securityfocus.com/bid/51639
- http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/vulnerability.htm
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72680
- http://www.exploit-db.com/exploits/18818
- http://www.exploit-db.com/exploits/18833
- http://www.securityfocus.com/bid/51639
- http://www.solarwinds.com/documentation/storage/storagemanager/docs/ReleaseNotes/vulnerability.htm
- https://exchange.xforce.ibmcloud.com/vulnerabilities/72680
CWEs
CWE-89
Verify integrity in audit chain (admin only). AS-IS.