CVE-2012-6427 Information

Description

Multiple SQL injection vulnerabilities in Carlo Gavazzi EOS-Box with firmware before 1.0.0.1080_2.1.10 allow remote attackers to execute arbitrary SQL commands via unspecified vectors a similar issue to CVE-2012-5861.

Reference

http://www.us-cert.gov/control_systems/pdf/ICSA-12-354-02.pdf