10
CVE-2000-1209
- EPSS 89.73%
- Published 12.08.2002 04:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, and (6) Visio 2000, which allows remote attackers to gain privileges, as exploited by worms such as Voyager Alpha Force and Spida.
Data is provided by the National Vulnerability Database (NVD)
Compaq ≫ Insight Manager Version7.0
Compaq ≫ Insight Manager Version7.0 Updatesp1
Compaq ≫ Insight Manager Xe Version1.1
Compaq ≫ Insight Manager Xe Version1.21
Compaq ≫ Insight Manager Xe Version2.1
Compaq ≫ Insight Manager Xe Version2.1b
Compaq ≫ Insight Manager Xe Version2.1c
Compaq ≫ Insight Manager Xe Version2.2
Microsoft ≫ Data Engine Version1.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 89.73% | 0.995 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|