Sybase SQL sa Account Blank Password

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote database service has an account with a blank password.

Description :

The remote Sybase SQL server has the default 'sa' account enabled
without any password.

An attacker may use this flaw to execute commands against the remote
host as well as read database content.

Solution :

Either disable this account or set a password for it.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Databases

Nessus Plugin ID: 17162 ()

Bugtraq ID:

CVE ID:

Ready to Scan Unlimited IPs & Run Compliance Checks?

Upgrade to Nessus Professional today!

Buy Now

Combine the Power of Nessus with the Ease of Cloud

Start your free Nessus Cloud trial now!

Begin Free Trial