Lucene search

[email protected]CVE-2000-0199

HistoryMar 22, 2000 - 5:00 a.m.

CVE-2000-0199

2000-03-2205:00:00

[email protected]

web.nvd.nist.gov

microsoft

sql server 7.0

enterprise manager

weak encryption

cve-2000-0199

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.8%

JSON

When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the “Always prompt for login name and password” option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.

Affected configurations

NVD

Node

microsoftsql_serverMatch7.0

CPENameOperatorVersion
microsoft:sql_servermicrosoft sql servereq7.0

CPE	Name	Operator	Version
microsoft:sql_server	microsoft sql server	eq	7.0

References

www.securityfocus.com/bid/1055

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.8%

JSON

Related for CVE-2000-0199

nvd1 nessus1 cvelist1