• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

AdventNet EventLog Analyzer Insecure Default MySQL Password Unauthorized Access Vulnerability

AdventNet EventLog Analyzer is prone to a vulnerability that can result in unauthorized access to the application's SQL database.

This issue occurs because of an insecure default password.

Attackers can exploit this issue to access or modify sensitive data or to exploit latent vulnerabilities in the underlying database. Attackers can use information harvested to compromise the affected computer; other attacks are also possible.

EventLog Analyzer Build 4030 is vulnerable; other versions may also be affected.