The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database.Referenceshttp://www.zebux.org/pub/Advisory/Advisory_Websense_Reporter_Password_Disclosure_200810.txthttp://secunia.com/advisories/32264http://www.securitytracker.com/id?1021058http://www.vupen.com/english/advisories/2008/2819http://www.securityfocus.com/bid/31746
