Description

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

Remediation

References

CVE-2002-1872

Related Vulnerabilities

WordPress 3.9.x Multiple Vulnerabilities (3.9 - 3.9.36)

WordPress Plugin WordPress Landing Pages Cross-Site Scripting (2.2.4)

WordPress Plugin Auto ThickBox Plus Cross-Site Scripting (1.9)

WordPress 5.9.x Multiple Vulnerabilities (5.9 - 5.9.7)

YUI Library Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-4940)

Severity

Medium

Classification

CVE-2002-1872

Tags

Missing Update Known Vulnerabilities