Published: 30/05/2000 Updated: 12/10/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 220

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft sql server 7.0

## # $Id: mssql_payload_sqlirb 11730 2011-02-08 23:31:44Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' cl ...

## # $Id: mssql_payloadrb 11392 2010-12-21 20:36:34Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class M ...

NVD-CWE-Other http://www.microsoft.com/technet/support/kb.asp?ID=263968 http://www.securityfocus.com/bid/1281 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-035 https://nvd.nist.gov https://www.exploit-db.com/exploits/16394/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2000-0402

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect