Description
Symantec Brightmail AntiSpam before 6.0.2 has a hard-coded database administrator password, which allows remote attackers to gain privileges.
Affected products
- Symantec / brightmail_antispam4.0 – 4.0
- Symantec / brightmail_antispam5.5 – 5.5
- Symantec / brightmail_antispam6.0 – 6.0
- Symantec / brightmail_antispam6.0.1 – 6.0.1
References
- MISChttp://securityresponse.symantec.com/avcenter/security/Content/2005.05.31a.html
- MISChttp://securitytracker.com/id?1014088
- VENDOR_ADVISORYhttp://secunia.com/advisories/15562
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/20804
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2005/0671