|
Family: Databases --> Category: infos
HSQLDB Server Default Credentials Vulnerability Scan
Vulnerability Scan Summary Checks for default credentials with an HSQLDB server
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote host is running a database server with default credentials.
Description :
The installation of HSQLDB on the remote host has the default 'sa'
account enabled without a password. A possible hacker may use this flaw to
execute commands against the remote host, as well as read any data it
might contain.
Solution :
Disable this account or assign a password to it. In addition, it is
suggested that you filter incoming traffic to this port.
Threat Level:
Medium / CVSS Base Score : 5
(AV:R/AC:L/Au:NR/C:P/A:N/I:P/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|