MDB stored procedures with prefix sp_ or xp_
search cancel

MDB stored procedures with prefix sp_ or xp_

book

Article ID: 239155

calendar_today

Updated On:

Products

CA Service Desk Manager CA Service Management - Service Desk Manager CA Service Catalog

Issue/Introduction

Our pen-testing detected vulnerability regarding the MDB database that uses built-in stored procedure prefix 'sp_' or 'xp_'.

How to address the vulnerability? Is there fix for it?

Environment

Service Desk Manager 17.x

Resolution

Out of the box, Service Desk Manager does not set up the database with stored procedures with prefix 'sp_' or 'xp_'. Also the MDB, does not use those stored procedures. 

Powered by Wolken Software