Microsoft SQL Server allows local users to obtain database passwords via the Data Transformation Service (DTS) package Properties dialog, aka the DTS Password vulnerability.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Sql_server | Microsoft | 6.5 (including) | 6.5 (including) |
| Sql_server | Microsoft | 7.0 (including) | 7.0 (including) |
References
- http://www.securityfocus.com/archive/1/62771
- http://www.securityfocus.com/bid/1292
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-041
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4582
- http://www.securityfocus.com/archive/1/62771
- http://www.securityfocus.com/bid/1292
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-041
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4582