Vulnerability Details CVE-2005-3280
Paros 3.2.5 uses a default password for the "sa" account in the underlying HSQLDB database and does not restrict access to the local machine, which allows remote attackers to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.02
EPSS Ranking 83.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/17089
- http://secunia.com/advisories/18626
- http://www.gentoo.org/security/en/glsa/glsa-200601-15.xml
- http://www.securityfocus.com/archive/1/423446/100/0/threaded
- http://www.securityfocus.com/bid/15141
- http://www.zone-h.com/en/advisories/read/id=8286/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22557
- http://secunia.com/advisories/17089
- http://secunia.com/advisories/18626
- http://www.gentoo.org/security/en/glsa/glsa-200601-15.xml
- http://www.securityfocus.com/archive/1/423446/100/0/threaded
- http://www.securityfocus.com/bid/15141
- http://www.zone-h.com/en/advisories/read/id=8286/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22557