CVE-2010-4284 Information

Description

SQL injection vulnerability in the authentication form in the integrated web server in the Data Management Server (DMS) before 1.4.3 in Samsung Integrated Management System allows remote attackers to execute arbitrary SQL commands via unspecified vectors.

Reference

http://www.kb.cert.org/vuls/id/236668 http://www.us-cert.gov/control_systems/pdf/ICSA-11-069-01.pdf