Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0199

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2000-0199
Last Modified 10 Sep 2008 03:03:16
Published 14 Mar 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0199

Summary

When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.

Vulnerable Systems

Application

  • Microsoft Sql Server 7.0


References

BID - 1055


Last Updated: 27 May 2016 10:35:36