Description

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

Remediation

References

CVE-2002-1872

Related Vulnerabilities

WordPress Plugin Elementor Website Builder Unspecified Vulnerability (3.0.15)

XWikiplatform Other Vulnerability (CVE-2024-46978)

MySQL CVE-2022-21335 Vulnerability (CVE-2022-21335)

Oracle Database Server CVE-2024-21184 Vulnerability (CVE-2024-21184)

Restlet Framework Deserialization of Untrusted Data Vulnerability (CVE-2013-4271)

Severity

Medium

Classification

CVE-2002-1872

Tags

Missing Update Known Vulnerabilities