CVE-2005-3280

Paros 3.2.5 uses a default password for the "sa" account in the underlying HSQLDB database and does not restrict access to the local machine, which allows remote attackers to gain privileges.

Date published : 2005-10-23

http://www.securityfocus.com/bid/15141

http://www.securityfocus.com/archive/1/423446/100/0/threaded