2.1
CVE-2000-0402
- EPSS 90.61%
- Veröffentlicht 30.05.2000 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:51:38
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Sql Server Version7.0
Microsoft ≫ Sql Server Version7.0 Updatesp1
Microsoft ≫ Sql Server Version7.0 Updatesp2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 90.61% | 0.998 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:P/I:N/A:N
|
http://www.microsoft.com/technet/support/kb.asp?ID=263968
http://www.securityfocus.com/bid/1281
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-035