CVE-2009-2357

2009-07-0723:00:00

mitre

www.cve.org

AI Score

Confidence

Low

EPSS

0.008

Percentile

81.2%

JSON

The default configuration of TekRADIUS 3.0 uses the sa account to communicate with Microsoft SQL Server, which makes it easier for remote attackers to obtain privileged access to the database and the underlying Windows operating system.

References

www.nth-dimension.org.uk/utils/get.php?downloadsid=56

www.securityfocus.com/archive/1/504740/100/0/threaded

www.vupen.com/english/advisories/2009/1816