Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 7.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0999
Microsoft SQL 7.0 server allows a remote malicious user to cause a denial of service via a malformed TDS packet.
Microsoft Sql Server 7.0
1 EDB exploit
NA
CVE-2000-0199
When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.
Microsoft Sql Server 7.0
NA
CVE-2000-0402
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.
Microsoft Sql Server 7.0
2 EDB exploits
NA
CVE-2004-1560
Microsoft SQL Server 7.0 allows remote malicious users to cause a denial of service (mssqlserver service halt) via a long request to TCP port 1433, possibly triggering a buffer overflow.
Microsoft Sql Server 7.0
1 EDB exploit
NA
CVE-2000-0202
Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote malicious users to gain privileges via a malformed Select statement in an SQL query.
Microsoft Sql Server 7.0
Microsoft Data Engine 1.0
NA
CVE-2001-0509
Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and previous versions, (2) Microsoft SQL Server 2000 and previous versions, (3) Windows NT 4.0, and (4) Windows 2000 allow remote malicious users to cause a denial of service via malformed inputs.
Microsoft Exchange Server 5.5
Microsoft Exchange Server 5.0
Microsoft Exchange Server 2000
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
Microsoft Windows Nt 4.0
Microsoft Windows 2000 -
Microsoft Windows 2000
8.7
CVSSv3
CVE-2024-0056
Microsoft.Data.SqlClient and System.Data.SqlClient SQL Data Provider Security Feature Bypass Vulnerability
Microsoft Sql Server 2022
Microsoft Visual Studio 2022
Microsoft Microsoft.data.sqlclient
Microsoft System.data.sqlclient
Microsoft .net Framework
Microsoft .net Framework 4.6.2
Microsoft .net Framework 4.7
Microsoft .net Framework 4.7.1
Microsoft .net Framework 4.7.2
Microsoft .net Framework 3.5
Microsoft .net Framework 4.8.1
Microsoft .net Framework 2.0
Microsoft .net
Microsoft .net 8.0.0
NA
CVE-2000-1209
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, a...
Compaq Insight Manager Xe 2.1b
Microsoft Data Engine 1.0
Compaq Insight Manager Xe 1.1
Compaq Insight Manager Xe 1.21
Compaq Insight Manager Xe 2.1
Compaq Insight Manager 7.0
Compaq Insight Manager Xe 2.1c
Microsoft Msde 2000
Compaq Insight Manager Xe 2.2
2 EDB exploits
NA
CVE-2002-0695
Buffer overflow in the Transact-SQL (T-SQL) OpenRowSet component of Microsoft Data Access Components (MDAC) 2.5 up to and including 2.7 for SQL Server 7.0 or 2000 allows remote malicious users to execute arbitrary code via a query that calls the OpenRowSet command.
Microsoft Data Access Components 2.0
Microsoft Data Access Components 2.5
Microsoft Data Access Components 2.6
Microsoft Data Access Components 2.12.4202.3
Microsoft Data Access Components 2.7
Microsoft Microsoft Data Access Components 2.12.4292.3 Ga Clean
Microsoft Data Access Components 1.5
Microsoft Data Access Components 2.1
Microsoft Data Access Components 2.1.1.3711.11
NA
CVE-2007-6330
Meridian Prolog Manager 2007, and 7.5 and previous versions, sends all usernames and passwords to the client in a (1) cleartext or (2) weakly encrypted format to support client-side login authentication, which makes it easier for remote malicious users to obtain database access b...
Meridian Software Prolog Manager 7.5
Meridian Software Prolog Manager 7.0
Meridian Software Prolog Manager 2007
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »