SQL Server Cleartext 'sa' Account 'sa' Password Attempted Login (deprecated)

Binary data 1109.prm...

SQL Server Cleartext 'admin' Account 'administrator' Password Attempted Login (deprecated)

Binary data 1113.prm...

SQL Server Cleartext 'sa' Account 'admin' Password Authentication (deprecated)

Binary data 1125.prm...

SQL Server Cleartext 'probe' Account 'password' Password Attempted Login (deprecated)

Binary data 1117.prm...

SQL Server Cleartext 'probe' Account 'probe' Password Authentication (deprecated)

Binary data 1128.prm...

SQL Server Cleartext 'probe' Account 'password' Password Authentication (deprecated)

Binary data 1129.prm...

SQL Server Cleartext 'admin' Account 'administrator' Password Authentication (deprecated)

Binary data 1126.prm...

SQL Server Cleartext 'sa' Account 'sa' Password Authentication (deprecated)

Binary data 1122.prm...

SQL Server Cleartext 'sa' Account 'password' Password Authentication (deprecated)

Binary data 1123.prm...

SQL Server Cleartext 'sa' Account 'admin' Password Attempted Login (deprecated)

Binary data 1112.prm...

SQL Server Cleartext 'sa' Account 'sql' Password Attempted Login (deprecated)

Binary data 1119.prm...

SQL Server Cleartext 'sa' Account 'sql' Password Authentication (deprecated)

Binary data 1131.prm...

SQL Server Cleartext 'admin' Account 'password' Password Attempted Login (deprecated)

Binary data 1114.prm...

SQL Server Cleartext 'probe' Account 'probe' Password Attempted Login (deprecated)

Binary data 1116.prm...

SQL Server Detection

Binary data 2131.prm...

CVE-2004-0702

Bugzilla 2.17.1–2.17.7 is affected by CVE-2004-0702: the DBI layer displays the database password in an error message when the SQL server is not running, enabling potential information disclosure to remote attackers. The issue concerns the Bugzilla CGI/database interaction rather than input valid...

Microsoft SQL Server < 7 Local Privilege Escalation

Based on its version number, the remote host may be vulnerable to a local exploit wherein an authenticated user can obtain and crack SQL usernames and passwords from the registry. An attacker may use this flaw to elevate their privileges on the local database. This alert might be a false positive...

CVE-2003-0232

Microsoft SQL Server 7, 2000, and MSDE allows local users to execute arbitrary code via a certain request to the Local Procedure Calls LPC port that leads to a buffer overflow...

CVE-2003-0231

Microsoft SQL Server 7, 2000, and MSDE allows local or remote authenticated users to cause a denial of service crash or hang via a long request to a named pipe...

CVE-2003-0230

Microsoft SQL Server 7, 2000, and MSDE allows local users to gain privileges by hijacking a named pipe during the authentication of another user, aka the "Named Pipe Hijacking" vulnerability...