CVE-2012-3336

Name of the Vulnerable Software and Affected Versions IBM InfoSphere Guardium versions 8.0 through 8.2

Description The issue allows a remote authenticated attacker to send specially-crafted SQL statements to multiple scripts. This could enable the attacker to view, add, modify, or delete information in the back-end database.

Recommendations For IBM InfoSphere Guardium versions 8.0 through 8.2, consider restricting access to the database and limiting the privileges of authenticated users to minimize the risk of exploitation. As a temporary workaround, consider disabling the scripts that are vulnerable to SQL injection until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.