Microsoft SQL Server Other Vulnerability (CVE-2000-0199)

Description

When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.

Remediation

References

CVE-2000-0199

Related Vulnerabilities

Joomla! Core 3.x.x Cross-Site Scripting (3.0.0 - 3.9.11)

WordPress Plugin AStickyPostOrderER Cross-Site Scripting (0.3.1)

Apache HTTP Server Uncontrolled Resource Consumption Vulnerability (CVE-2014-0118)

WordPress Plugin Ajax Gallery 'list.php' SQL Injection (3.0)

WordPress Plugin Visitors Cross-Site Scripting (0.3)

Severity

High

Classification