SAP ASE leaves sensitive credentials in installation logs

SAP users should deploy the patches for Adaptive Server Enterprise (ASE) released last month because the server fails to clear credentials from persistent installation logs. Even though the credentials are encrypted or hashed, researchers warn that attackers can easily decrypt them to gain full access to a sensitive monitoring component.

Read full article on CIO.com

 


Date:

Categorie(s):

Tag(s):