NuytsTech Security

CVE-2008-4646

by ·

The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database.

Date published : 2008-10-21

http://www.securityfocus.com/bid/31746

http://www.zebux.org/pub/Advisory/Advisory_Websense_Reporter_Password_Disclosure_200810.txt

Tags: