Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0485


Vulnerability Score 2.1 2.1
CVE Id CVE-2000-0485
Last Modified 10 Sep 2008 03:04:48
Published 30 May 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



Microsoft SQL Server allows local users to obtain database passwords via the Data Transformation Service (DTS) package Properties dialog, aka the "DTS Password" vulnerability.

Vulnerable Systems


  • Microsoft Sql Server 6.5

  • Microsoft Sql Server 7.0


MS - MS00-041

XF - mssql-dts-reveal-passwords

BID - 1292

BUGTRAQ - 20000530 Fw: Steal Passwords Using SQL Server EM

Last Updated: 27 May 2016 10:35:44