The remote host is vulnerable to a SQL Injection attack.
The remote host is running the IpSwitch WhatsUp application, a tool for managing network hosts. This version of IpSwitch WhatsUp is vulnerable to a remote SQL Injection flaw. The login.asp script fails to parse out SQL-reserved characters and would allow a remote attacker to read or write data as well as potentially execute arbitrary code on the remote database
Upgrade to version 2005 SP 1A or higher.