CVE-2016-2343

Name of the Vulnerable Software and Affected Versions Patterson Dental Eaglesoft version 17

Description The issue allows remote attackers to obtain sensitive patient information from the Dental.DB database. This is possible due to a hardcoded password for the dba account, which is set to sql. Attackers can exploit this by sending SQL statements to access the sensitive data.

Recommendations For Patterson Dental Eaglesoft version 17, change the hardcoded password of the dba account to a secure password to prevent unauthorized access. As a temporary workaround, consider restricting access to the database to minimize the risk of exploitation.