High Published: Mar 14, 2000 Modified: Apr 03, 2025

CVE-2000-0199

7.2 CVSS SCORE

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Description

When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.

CVSS Vector Details

Attack Vector Local

Attack Complexity Low

Confidentiality C

Integrity C

Availability C

Affected Software Configurations

a microsoft sql_server 7.0 * * * * * * *

Weaknesses (CWE)

NVD-CWE-Other

References & External Links

http://www.securityfocus.com/bid/1055
http://www.securityfocus.com/bid/1055

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More

← Back to CVE Tracker