Scrutinizer NetFlow and sFlow Analyzer 9 Default MySQL Credential
30 August 2012
The MySQL component in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) 22.214.171.12499 and earlier has a default password of admin for the (1) scrutinizer and (2) scrutremote accounts, which allows remote attackers to execute arbitrary SQL commands via a TCP session.
CVSS v2 Base Score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)
The use of encryption continues to grow in response to consumer concerns, privacy compliance regulations and on-going cyber-attacks and yet there are still major challenges in managing key across what are the mostly fragmented and tactical deployments of encryption technologies.