CVE-2014-1645

2014-03-29T01:55:00
ID CVE-2014-1645
Type cve
Reporter cve@mitre.org
Modified 2014-03-31T16:27:00

Description

SQL injection vulnerability in forcepasswd.do in the management GUI in Symantec LiveUpdate Administrator (LUA) 2.x before 2.3.2.110 allows remote attackers to execute arbitrary SQL commands via unspecified vectors.