Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 2000 vulnerabilities and exploits
(subscribe to this query)
676
VMScore
CVE-2008-4110
Buffer overflow in the SQLVDIRLib.SQLVDirControl ActiveX control in Tools\Binn\sqlvdir.dll in Microsoft SQL Server 2000 (aka SQL Server 8.0) allows remote malicious users to cause a denial of service (browser crash) or possibly execute arbitrary code via a long URL in the second ...
Microsoft Sql Server 2000
445
VMScore
CVE-2002-0650
The keep-alive mechanism for Microsoft SQL Server 2000 allows remote malicious users to cause a denial of service (bandwidth consumption) via a "ping" style packet to the Resolution Service (UDP port 1434) with a spoofed IP address of another SQL Server system, which ca...
Microsoft Sql Server 2000
445
VMScore
CVE-2002-0729
Microsoft SQL Server 2000 allows remote malicious users to cause a denial of service via a malformed 0x08 packet that is missing a colon separator.
Microsoft Sql Server 2000
445
VMScore
CVE-2002-1981
Microsoft SQL Server 2000 through SQL Server 2000 SP2 allows the "public" role to execute the (1) sp_MSSetServerProperties or (2) sp_MSsetalertinfo stored procedures, which allows malicious users to modify configuration including SQL server startup and alert settings.
Microsoft Sql Server 2000
755
VMScore
CVE-2002-0982
Microsoft SQL Server 2000 SP2, when configured as a distributor, allows malicious users to execute arbitrary code via the @scriptfile parameter to the sp_MScopyscript stored procedure.
Microsoft Sql Server 2000
1 EDB exploit
641
VMScore
CVE-2000-0199
When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.
Microsoft Sql Server 7.0
409
VMScore
CVE-2000-0603
Microsoft SQL Server 7.0 allows a local user to bypass permissions for stored procedures by referencing them via a temporary stored procedure, aka the "Stored Procedure Permissions" vulnerability.
Microsoft Sql Server 7.0
409
VMScore
CVE-2000-0654
Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability.
Microsoft Sql Server 7.0
220
VMScore
CVE-2000-0402
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.
Microsoft Sql Server 7.0
2 EDB exploits
755
VMScore
CVE-2002-0859
Buffer overflow in the OpenDataSource function of the Jet engine on Microsoft SQL Server 2000 allows remote malicious users to execute arbitrary code.
Microsoft Sql Server 2000
Microsoft Jet 4.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460
CVE-2024-4646
CVE-2024-29212
IMAP
CVE-2023-36672
CVE-2024-34547
command injection
CVE-2024-4651
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »