Vulnerability: Microsoft SQL Server installation process

Microsoft has advised a vulnerability exists in its SQL server installation process, which may leave passwords on the user's system and allow an attacker to potentially compromise the sa password and/or a domain account password.

Microsoft SQL Server 7.0, Microsoft Data Engine 1.0 (MSDE 1.0), or SQL Server 2000 are all affected.

More information on the vulnerability including a patch can be found here.

Join the newsletter!


Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about Microsoft

Show Comments