This CPE summary could be partial or incomplete. Please contact us for a detailed listing.


Vendor Microsoft First view 2002-12-31
Product Sql Server Last view 2002-12-31
Version 6.0 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
CPE Product cpe:2.3:a:microsoft:sql_server

Activity : Overall

Related : CVE

  Date Alert Description
5 2002-12-31 CVE-2002-1872

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

CAPEC : Common Attack Pattern Enumeration & Classification

id Name
CAPEC-20 Encryption Brute Forcing
CAPEC-112 Brute Force

Open Source Vulnerability Database (OSVDB)

id Description
59636 Microsoft SQL Server SQL Authentication Password Encryption Weakness