Unrated severityNVD Advisory· Published Aug 12, 2002· Updated Apr 16, 2026
CVE-2000-1209
CVE-2000-1209
Description
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, and (6) Visio 2000, which allows remote attackers to gain privileges, as exploited by worms such as Voyager Alpha Force and Spida.
Affected products
10cpe:2.3:a:compaq:insight_manager:7.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:compaq:insight_manager:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:compaq:insight_manager:7.0:sp1:*:*:*:*:*:*
cpe:2.3:a:compaq:insight_manager_xe:1.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:compaq:insight_manager_xe:1.1:*:*:*:*:*:*:*
- cpe:2.3:a:compaq:insight_manager_xe:1.21:*:*:*:*:*:*:*
- cpe:2.3:a:compaq:insight_manager_xe:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:compaq:insight_manager_xe:2.1b:*:*:*:*:*:*:*
- cpe:2.3:a:compaq:insight_manager_xe:2.1c:*:*:*:*:*:*:*
- cpe:2.3:a:compaq:insight_manager_xe:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:data_engine:1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
12- www.iss.net/security_center/static/1459.phpnvdPatchVendor Advisory
- www.kb.cert.org/vuls/id/635463nvdPatchThird Party AdvisoryUS Government Resource
- marc.infonvd
- marc.infonvd
- marc.infonvd
- online.securityfocus.com/archive/1/273639nvd
- security-archive.merton.ox.ac.uk/bugtraq-200008/0233.htmlnvd
- support.microsoft.com/default.aspxnvd
- support.microsoft.com/default.aspxnvd
- www.microsoft.com/security/security_bulletins/ms02020_sql.aspnvd
- www.osvdb.org/3570nvd
- www.securityfocus.com/bid/4797nvd
News mentions
0No linked articles in our index yet.