CVE-2015-3001 - SysAid Help Desk before 15.2 uses a hardcoded password of Password1 for the sa SQL Server Express us

CVE-2015-3001

Summary

SysAid Help Desk before 15.2 uses a hardcoded password of Password1 for the sa SQL Server Express user account, which allows remote authenticated users to bypass intended access restrictions by leveraging knowledge of this password.

References

Vulnerable Configurations

cpe:2.3:a:sysaid:sysaid:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:6.0:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:6.5:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:6.5:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:14.4:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:14.4:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:15.1:*:*:*:*:*:*:*
cpe:2.3:a:sysaid:sysaid:15.1:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 09-10-2018 - 19:56)
Impact:
Exploitability:

CWE

CWE-255

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	75035
bugtraq	20150603 [Multiple CVE's]: various critical vulnerabilities in SysAid Help Desk (RCE, file download, DoS, etc)
confirm	https://www.sysaid.com/blog/entry/sysaid-15-2-your-voice-your-service-desk
fulldisc	20150603 [Multiple CVE's]: various critical vulnerabilities in SysAid Help Desk (RCE, file download, DoS, etc)
misc	http://packetstormsecurity.com/files/132138/SysAid-Help-Desk-14.4-Code-Execution-Denial-Of-Service-Traversal-SQL-Injection.html

Last major update

09-10-2018 - 19:56

Published

08-06-2015 - 14:59

Last modified

09-10-2018 - 19:56