Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.10862
Category:Brute force attacks
Title:Microsoft's SQL Server Brute Force
Summary:The MSSQL Server has a common password for one or more accounts.; These accounts may be used to gain access to the records in the database or even allow; remote command execution.
Description:Summary:
The MSSQL Server has a common password for one or more accounts.
These accounts may be used to gain access to the records in the database or even allow
remote command execution.

Vulnerability Insight:
If you want to use additional passwords for the 'sa' and 'admin' accounts
you need to disable safe_checks().

Vulnerability Impact:
An attacker can use these accounts to read and/or
modify data on your MSSQL server. In addition, the attacker may be able to launch programs on the
target Operating system

Solution:
Please set a difficult to guess password for these accounts.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

CopyrightThis script is Copyright (C) 2001 H D Moore

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.