|
|
Microsoft SQL Server Login Weak Authentication Mechanism
|
Bugtraq ID:
|
6097
|
|
Class:
|
Design Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Nov 02 2002 12:00AM
|
|
Updated:
|
Nov 02 2002 12:00AM
|
|
Credit:
|
Discovery of this vulnerability credited to David Litchfield.
|
|
Vulnerable:
|
Microsoft SQL Server 2000 SP2
Microsoft SQL Server 2000 SP1
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP6
-
Microsoft Windows NT 4.0 SP5
Microsoft SQL Server 2000
-
Microsoft Windows 2000 Professional SP2
-
Microsoft Windows 2000 Professional SP1
-
Microsoft Windows 2000 Professional
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP6
-
Microsoft Windows NT 4.0 SP5
-
Microsoft Windows NT 4.0
Microsoft SQL Server 7.0 SP4
-
Microsoft SQL Server 7.0
-
Microsoft SQL Server 7.0
Microsoft SQL Server 7.0 SP3
-
Microsoft SQL Server 7.0
-
Microsoft SQL Server 7.0
Microsoft SQL Server 7.0 SP2
-
Microsoft SQL Server 7.0
-
Microsoft SQL Server 7.0
Microsoft SQL Server 7.0 SP1
-
Microsoft SQL Server 7.0
-
Microsoft SQL Server 7.0
Microsoft SQL Server 7.0
-
Microsoft BackOffice 4.5
-
Microsoft BackOffice 4.5
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP6a
-
Microsoft Windows NT 4.0 SP6
-
Microsoft Windows NT 4.0 SP6
-
Microsoft Windows NT 4.0 SP5
-
Microsoft Windows NT 4.0 SP5
-
Microsoft Windows NT 4.0 SP4
-
Microsoft Windows NT 4.0 SP4
-
Microsoft Windows NT 4.0 SP3
-
Microsoft Windows NT 4.0 SP3
-
Microsoft Windows NT 4.0 SP2
-
Microsoft Windows NT 4.0 SP2
-
Microsoft Windows NT 4.0 SP1
-
Microsoft Windows NT 4.0 SP1
-
Microsoft Windows NT 4.0
-
Microsoft Windows NT 4.0
Microsoft SQL Server 6.5
Microsoft SQL Server 6.0
-
Microsoft Windows NT 4.0
-
Microsoft Windows NT 4.0
|
|
|
|
Not Vulnerable:
|
|
|
|
