| VID |
25046 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
A version of Sybase Adaptive Server Enterprise which is older than 12.5.3 is detected as installed on the host. Sybase Adaptive Server is a full SQL relational database management system. It is available for various platforms including Microsoft Windows operating systems. Sybase Adaptive Server versions 12.5.3 and earlier are vulnerable to multiple unspecified vulnerabilities. It is not known if this issue is local or remote as the underlying cause of this issue is currently unknown. Reportedly, it is conjectured that this issue may result from an error in access control lists.
* Note: This check requires an account with Guest or upper privileges which can access the registry of the remote host to scan. Absence of these condition will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
http://archives.neohapsis.com/archives/bugtraq/2004-12/0315.html
* Platforms Affected:
Sybase, Inc., Sybase Adaptive Server 12.5.3 and earlier
Apple Computer, Inc., Macintosh Any version
Microsoft Windows Any version
Linux Any version
Unix Any version |
| Recommendation |
Upgrade to the latest version of Sybase Adaptive Server (12.5.4.0 or later), available from the Sybase Adaptive Server Enterprise Web page at http://www.sybase.com/products/informationmanagement/adaptiveserverenterprise |
| Related URL |
CVE-2005-0441 (CVE) |
| Related URL |
12080,12562 (SecurityFocus) |
| Related URL |
19354 (ISS) |
|
