Intrusion Prevention

Plixer.Scrutinizer.Default.MySQL.Credential.Login

Description

This indicates an attack attempt against a Security Bypass vulnerability in The MySQL component in Plixer Scrutinizer aka Dell SonicWALL Scrutinizer.
The vulnerability is due to the application setting a default password of admin for the "scrutinizer" and "scrutremote" accounts. A remote attacker may be able to exploit this to send a crafted query to execute SQL commands on a vulnerable server.

Affected Products

Plixer Scrutinizer 9.0.1.19899 and earlier

Impact

Security Bypass: Remote attackers can bypass security checking of vulnerable systems.

Recommended Actions

Upgrade to later versions.
http://www.plixer.com/Press-Releases/plixer-releases-9-5-2.html

CVE References

CVE-2012-3951