Description

Microsoft Enterprise Manager allows local users to obtain database passwords via the Data Transformation Service (DTS) package Registered Servers Dialog dialog, aka a variant of the "DTS Password" vulnerability.

Remediation

References

CVE-2000-0654

Related Vulnerabilities

Oracle JRE CVE-2023-22049 Vulnerability (CVE-2023-22049)

MySQL CVE-2022-21303 Vulnerability (CVE-2022-21303)

phpMyFAQ Other Vulnerability (CVE-2004-2255)

Osclass Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-8084)

MediaWiki Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2014-5241)

Severity

Medium

Classification

CVE-2000-0654

Tags

Missing Update Known Vulnerabilities