CVE-2015-9098 in SQL Monitorinformation

Résumé

par MITRE

In Redgate SQL Monitor before 3.10 and 4.x before 4.2, a remote attacker can gain unauthenticated access to the Base Monitor, resulting in the ability to execute arbitrary SQL commands on any monitored Microsoft SQL Server machines. If the Base Monitor is connecting to these machines using an account with SQL admin privileges, then code execution on the operating system can result in full system compromise (if Microsoft SQL Server is running with local administrator privileges).

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

22/06/2017

Divulgation

22/06/2017

Modérer

accepté

Entrée

VDB-102751

CPE

prêt

Exploitation

Télécharger

EPSS

0.14074

KEV

non

Activités

très faible

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!