CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Veeam•added 2016/10/12 12:0 a.m.•11 views

Restore Fails for Database with Consecutive Backslash Characters in File Path

Challenge Veeam Explorer for Microsoft SQL Server reports the error: Inconsistent database metadata. See the log for details. Cause One or more database file paths contained multiple consecutive backslash characters when the SQL server was backed up. Solution Clarifying Issue This issue cannot be...

7.4AI score

OSV•added 2016/09/24 10:59 a.m.•1 views

CVE-2016-6532

DEXIS Imaging Suite 10 has a hardcoded password for the sa account, which allows remote attackers to obtain administrative access by entering this password in a DEXISDATA SQL Server session...

9.8CVSS5.9AI score0.00734EPSS

NVD•added 2016/09/24 10:59 a.m.•5 views

CVE-2016-6532

DEXIS Imaging Suite 10 has a hardcoded password for the sa account, which allows remote attackers to obtain administrative access by entering this password in a DEXISDATA SQL Server session...

10CVSS9.7AI score0.00734EPSS

Prion•added 2016/09/24 10:59 a.m.•12 views

Hardcoded credentials

DEXIS Imaging Suite 10 has a hardcoded password for the sa account, which allows remote attackers to obtain administrative access by entering this password in a DEXISDATA SQL Server session...

10CVSS7.9AI score0.00734EPSS

Cvelist•added 2016/09/24 10:0 a.m.•14 views

CVE-2016-6532

DEXIS Imaging Suite 10 has a hardcoded password for the sa account, which allows remote attackers to obtain administrative access by entering this password in a DEXISDATA SQL Server session...

9.8AI score0.00734EPSS

CVE•added 2016/09/24 10:0 a.m.•34 views

CVE-2016-6532

CVE-2016-6532 affects DEXIS Imaging Suite 10, which contains hard-coded credentials for the sa account, enabling remote administrative access to the DEXIS_DATA SQL Server session. The vulnerability emerges from hard-coded database credentials and can lead to full compromise of the patient databas...

10CVSS9.6AI score0.00734EPSS

Kitploit•added 2016/09/19 3:22 p.m.•46 views

PowerUpSQL - A PowerShell Toolkit for Attacking SQL Server

The PowerUpSQL module includes functions that support SQL Server discovery, auditing for common weak configurations, and privilege escalation on scale. It is intended to be used during internal penetration tests and red team engagements. However, PowerUpSQL also includes many functions that could...

8AI score

NVD•added 2016/08/26 7:59 p.m.•10 views

CVE-2016-5683

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

7.8CVSS7.6AI score0.00346EPSS

Prion•added 2016/08/26 7:59 p.m.•12 views

Hardcoded credentials

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

4.6CVSS7.4AI score0.00346EPSS

Cvelist•added 2016/08/26 7:0 p.m.•18 views

CVE-2016-5683

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

7.8AI score0.00346EPSS

CVE•added 2016/08/26 7:0 p.m.•39 views

CVE-2016-5683

CVE-2016-5683 affects ReadyDesk 9.1. The vulnerability arises from storing SQL Server credentials in encrypted form using a hard-coded cryptographic key found in ReadyDesk.dll, allowing local users to decrypt and obtain cleartext credentials by reading SQL_Config.aspx. Connected sources corrobora...

7.8CVSS8.1AI score0.00346EPSS

Tenable Nessus•added 2016/08/19 12:0 a.m.•9 views

Microsoft SQL Server 2008 Detection

Binary data 9508.prm...

Tenable Nessus•added 2016/08/19 12:0 a.m.•8 views

Microsoft SQL Server 2016 Detection

Binary data 9512.prm...

Tenable Nessus•added 2016/08/19 12:0 a.m.•9 views

Microsoft SQL Server 2008 R2 Detection

Binary data 9509.prm...

Tenable Nessus•added 2016/08/19 12:0 a.m.•7 views

Microsoft SQL Server 2014 Detection

Binary data 9511.prm...

Tenable Nessus•added 2016/08/19 12:0 a.m.•7 views

Microsoft SQL Server 2012 Detection

Binary data 9510.prm...

OSV•added 2016/08/08 1:59 a.m.•0 views

CVE-2016-3059

IBM Tivoli Storage Manager for Databases: Data Protection for Microsoft SQL Server aka IBM Spectrum Protect for Databases 6.3 before 6.3.1.7 and 6.4 before 6.4.1.9 and Tivoli Storage FlashCopy Manager for Microsoft SQL Server aka IBM Spectrum Protect Snapshot 3.1 before 3.1.1.7 and 3.2 before...

6.2CVSS5.8AI score