exploitDog

GHSA-pp2f-p95f-2xhx

Опубликовано: 30 апр. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

Ссылки

EPSS

Процентиль: 78%

0.01171

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-326

Связанные уязвимости

CVE-2002-1872

CVSS3: 7.5

nvd

около 23 лет назад

Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.

EPSS

Процентиль: 78%

0.01171

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-326