Sql Server Security Vulnerabilities and Issues — Sql Server CVE List

Lucene search

MicrosoftSql Server

3 matches found

CVE•added 2000/07/12 4:0 a.m.•104 views

CVE-2000-0402

The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator (sa) account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability.

2.1CVSS7AI score0.74859EPSS

CVE•added 2000/10/13 4:0 a.m.•51 views

CVE-2000-0485

Microsoft SQL Server allows local users to obtain database passwords via the Data Transformation Service (DTS) package Properties dialog, aka the "DTS Password" vulnerability.

2.1CVSS6.6AI score0.01274EPSS

CVE•added 2001/01/09 5:0 a.m.•51 views

CVE-2000-1083

The xp_showcolv function in SQL Server and Microsoft SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execu...

2.1CVSS7.6AI score0.05005EPSS