Description

The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.

Remediation

References

CVE-2000-0402

Related Vulnerabilities

GlassFish CVE-2016-5528 Vulnerability (CVE-2016-5528)

TYPO3 Improper Input Validation Vulnerability (CVE-2015-8760)

WordPress Plugin WP Quick FrontEnd Editor Multiple Vulnerabilities (5.5)

WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (7.5.32.7212)

Drupal Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-6379)

Severity

Low

Classification

CVE-2000-0402

Tags

Missing Update Known Vulnerabilities