Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0402

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2000-0402
Last Modified 10 Sep 2008 03:04:35
Published 30 May 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0402

Summary

The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.

Vulnerable Systems

Application

  • Microsoft Sql Server 7.0


References

MS - MS00-035

BID - 1281

MSKB - Q263968


Last Updated: 27 May 2016 10:35:42