CVE-2002-0643 in SQL Serverinformazioni

Riassunto

di MITRE

The installation of Microsoft Data Engine 1.0 (MSDE 1.0), and Microsoft SQL Server 2000 creates setup.iss files with insecure permissions and does not delete them after installation, which allows local users to obtain sensitive data, including weakly encrypted passwords, to gain privileges, aka "SQL Server Installation Process May Leave Passwords on System."

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

23/07/2002

Moderazione

accettato

Voce

VDB-18413

CPE

pronto

CWE

CWE-269 (confermato)

CVSS

4.6 (NVD)

EPSS

0.01697

KEV

Attività

molto basso

Settore

Agriculture, Government, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0643
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0643
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0643/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you know our Splunk app?

Download it now for free!