It have nothing to do with a IOS at all. All the other SQL injection
that happen in the world have nothing to do with Cisco IOS flaws. This
is a pure case of the search function being open to SQL injection.
Therefore it is a design/code problem in one of the three web-app tiers
of the website.
Yeah .. but I guess their "Self Defending Network" well, um ...
DIDN'T.
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
