The embedded MySQL 4.0 server for Proofpoint Protection Server does not require a password for the root user of MySQL, which allows remote attackers to read or modify the backend database.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Proofpoint_protection_server | Proofpoint | * | * |