SecurityTracker.com
Keep Track of the Latest Vulnerabilities
with SecurityTracker!
    Home    |    View Topics    |    Search    |    Contact Us    |    Help    |   

SecurityTracker
Archives


Welcome to SecurityTracker!
 
Click to Sign Up
Sign Up
Sign Up for Your FREE Weekly SecurityTracker E-mail Alert Summary
Instant Alerts
Buy our Premium Vulnerability Notification Service to receive customized, instant alerts
Affiliates
Put SecurityTracker Vulnerability Alerts on Your Web Site -- It's Free!
Partners
Become a Partner and License Our Database or Notification Service
Report a Bug
Report a vulnerability that you have found to SecurityTracker
bugs
@
securitytracker.com
Sign Up!





Category:  Application (Database)  >  PrimeBase SQL Database Server Vendors:  SNAP Innovation GmbH
PrimeBase SQL Database Server Discloses Database Passwords to Local Users
SecurityTracker Alert ID:  1008280
CVE Reference:  GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Nov 22 2003
Impact:  Disclosure of authentication information, User access via local system
Exploit Included:  Yes  
Version(s): 4.2
Description:  A vulnerability was reported in the PrimeBase SQL Database Server. A local user can view the database admin password.

Vapid Labs reported that the database server stores the admin password in clear text in the 'password.adm' file in the server folder.

The report stated that because of typical default umask settings, any local user may be able to view the password on typical system installations.

It is also reported that the software is configured with a default "Administrator" account that requires no password (although the documentation recommends that the user set the password during installation).
Impact:  A local user can view the database admin password.
Solution:  No solution was available at the time of this entry.

The report recommends that you disable the Administrator account until a password has been set for it.
Vendor URL:  www.primebase.de/en/products/coretech/ds/index.html (Links to External Site)
Cause:  Access control error
Underlying OS:  Linux (Any), UNIX (Any)
Reported By:  "Larry W. Cashdollar" <lwc@vapid.ath.cx>
Message History:   This archive entry has one or more follow-up message(s) listed below.
May 18 2004 (Vendor Issues Fix) PrimeBase SQL Database Server Discloses Database Passwords to Local Users   ("Larry W. Cashdollar" <lwc@vapid.ath.cx>)
The vendor has released a fix.


 Source Message Contents
Date:  Sat, 22 Nov 2003 10:20:20 -0500 (EST)
From:  "Larry W. Cashdollar" <lwc@vapid.ath.cx>
Subject:  PrimeBase SQL Database server cleartext password storage. (fwd)

 

PrimeBase SQL Database server cleartext password storage.
Vapid Labs Security Note
10/20/03


	The PrimeBase SQL Database Server 4.2 stores passwords in clear
text, and based on the installation users umask settings maybe readable by
all local users.

>From the readme.txt file:

"The Admin server will require you to enter your password in a text file
called 'password.adm' (in the server folder), before you can continue.
NOTE: This is the password for access to the Admin Server only."

Depending on your umask settings (default 022 for root) the "Admin Server"
password maybe readable by local users.  Also the password is not stored
as a hash or encrypted.  A malicious user could uses this password to
access the web based administration server and compromise the system.

The database also comes with a default "Administrator" account with no
password, the documentation does recommend the installer set the
Administrator password during installation.


Recommendations: Store the password as a hash in a file read-only by the
Admin Server.  Disable the Administrator account until a password has been
set for it.

References: http://www.primebase.de


Larry Cashdollar
http://vapid.dhs.org


Go to the Top of This SecurityTracker Archive Page



Home   |    View Topics   |    Search   |    Contact Us   |    Help

Copyright 2004, SecurityGlobal.net LLC