|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Marc Ruef (marc.ruef_at_computec.ch)
Date: Wed Dec 18 2002 - 01:06:19 CST
Hi!
I was working with Okena StormWatch[1] - a really interesting commercial
intrusion prevention product - and saw that there is the SQL password
for the admin account (sa) missing.
With a SQL client and a blank password it's possible for everyone who
can connect to the manager to compromise the whole system/network.
My notification was sent on Fri, 15 Nov 2002 14:21:01 +0100 to
info
OKENA.com - Nothing came back.
Thanks to Mario Robic for helping discovering this problem.
Bye, Marc
-- Computer, Technik und Security http://www.computec.ch
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]