The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, and (6) Visio 2000, which allows remote malicious users to gain privileges, as exploited by worms such as Voyager Alpha Force and Spida.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
compaq insight manager xe 2.1b |
||
microsoft data engine 1.0 |
||
compaq insight manager xe 1.1 |
||
compaq insight manager xe 1.21 |
||
compaq insight manager xe 2.1 |
||
compaq insight manager 7.0 |
||
compaq insight manager xe 2.1c |
||
microsoft msde 2000 |
||
compaq insight manager xe 2.2 |