Back to main page

Microsoft SQL Server sa Account Default Blank Password

Category:

Command Injection

Sub-category:

SQL Injection

Severity:

medium

Description:

Detects attempts to exploit a SQL injection vulnerability in Microsoft SQL Server 2000 that allows remote attackers to gain privileges, execute commands against the remote host, as well as read the content of any databases the affected system might have.