 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.11330 |
| Category: | Windows |
| Title: | MS SQL7.0 Service Pack may leave passwords on system |
| Summary: | NOSUMMARY |
| Description: | Description: The installation process of the remote MS SQL server left files named 'sqlsp.log' on the remote host. These files contain the password assigned to the 'sa' account of the remote database. An attacker may use this flaw to gain full administrative access to your database. See http://www.microsoft.com/technet/security/bulletin/ms00-035.mspx Risk factor : Medium |
| Cross-Ref: |
BugTraq ID: 1281 Common Vulnerability Exposure (CVE) ID: CVE-2000-0402 http://www.securityfocus.com/bid/1281 Microsoft Security Bulletin: MS00-035 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-035 Microsoft Knowledge Base article: Q263968 http://www.microsoft.com/technet/support/kb.asp?ID=263968 XForce ISS Database: mssql-agent-stored-pw XForce ISS Database: mssql-sa-pw-in-sqlsplog |
| Copyright | This script is Copyright (C) 2003 Renaud Deraison |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |