Database Credential Vulnerability in Symantec Brightmail AntiSpam Software
CVE-2005-1867

Currently unrated

Key Information:

Vendor: Symantec
Status: Brightmail Antispam
Vendor: CVE Published:; 9 June 2005

Summary

Symantec Brightmail AntiSpam versions prior to 6.0.2 contain a vulnerability due to a hard-coded database administrator password. This flaw allows remote attackers to gain elevated privileges, potentially leading to unauthorized access and manipulation of sensitive data within the application. Users of affected versions should upgrade to the latest release to mitigate this security risk.

References

http://securityresponse.symantec.com/avcenter/security/Co...

x_refsource_CONFIRM

http://securitytracker.com/id?1014088

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/15562

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jun 9, 2005
Vulnerability Reserved
Jun 8, 2005