|
| TC: | 12065 | |
| Description: | Pervasive SQL Database server is a very popular database server which sees widespread use throughout the world. A vulnerability exists in the default installation of the SQL database server which creates a default user/password pairing ("admin"/""). This default configuration can easily be discovered and accessed remotely by an attacker and, upon discovery possibly exploited to the total compromise of the target system. | |
| TC Impact: | Gather Info | |
| Service: | Pervasive SQL Server |
| Vulnerability Publication: | Unknown | |
| Advisory Copyright: | Unknown | |
| Summary: | A remote attacker can possibly cause a total compromise of your Pervasive database server. | |
| Risk: | High | |
| CVSS 2.0 metrics: | Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial | |
| CVSS 2.0 Base Score: | 7.5 |
| Vulnerability Impact: |
Gain Root |
|---|
| Host Impact: | A remote attacker might totally compromise your database server. | |
| Nature of Remediation: | Change the configuration. |
| Step required to fix the reported vulnerability: | |
***** Solution type: Update Configuration ***** Change the default password. |
| References: | ||
| * MISC: http://www.pervasive.com |
| CVE Link: |
GENERIC-MAP-NOMATCH |
 |
|---|
| Glossary: |
Password SQL TCP |
|---|