Microsoft SQL Server Login Weak Authentication Mechanism

Microsoft SQL Server Login Weak Authentication Mechanism

Reportedly, passwords used for SQL Server Logins are sent across the network using a weak obfuscation algorithm.

An attacker can exploit this weakness to sniff network traffic to obtain SQL Server user and related password authentication credentials.