PT-2013-1736 · Henry Schein · Dentrix G5

Justin Shafer

Published

2013-05-01

Updated

2013-05-21

CVE-2012-4952

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Henry Schein Dentrix G5 versions prior to 15.1.294

Description The issue allows remote attackers to obtain sensitive patient information by exploiting a shared internal-database password across different customers' installations.

Recommendations For versions prior to 15.1.294, update to version 15.1.294 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2012-4952

Affected Products

Dentrix G5

PT-2013-1736 · Henry Schein · Dentrix G5

CVE-2012-4952

Weakness Enumeration

Related Identifiers

Affected Products

References · 4