Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0344

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0344
Last Modified 05 Sep 2008 04:23:52
Published 21 Jul 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0344

Summary

An SQL query method in Microsoft SQL Server 2000 Gold and 7.0 using Mixed Mode allows local database users to gain privileges by reusing a cached connection of the sa administrator account.

Vulnerable Systems

Application

  • Microsoft Sql Server 2000

  • Microsoft Sql Server 7.0


References

MS - MS01-032

XF - mssql-cached-connection-access(6684)

CIAC - L-095


Last Updated: 27 May 2016 10:36:14