Sybase SQL sa Account Blank Password

This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.


Synopsis :

The remote database service has an account with a blank password.

Description :

The remote Sybase SQL server has the default 'sa' account enabled
without any password.

An attacker may use this flaw to execute commands against the remote
host as well as read database content.

Solution :

Either disable this account or set a password for it.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: Databases

Nessus Plugin ID: 17162 ()

Bugtraq ID:

CVE ID: