Description

The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.

Remediation

References

CVE-2000-0402

Related Vulnerabilities

WordPress Plugin Spreadsheet (wpSS) SQL Injection (0.62)

MySQL CVE-2017-10155 Vulnerability (CVE-2017-10155)

MediaWiki Resource Management Errors Vulnerability (CVE-2015-8003)

WordPress Plugin Photoswipe Masonry Gallery Unspecified Vulnerability (1.2.17)

MySQL CVE-2015-0382 Vulnerability (CVE-2015-0382)

Severity

Low

Classification

CVE-2000-0402

Tags

Missing Update Known Vulnerabilities