|
 |  |  |  |  |  |  |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
 |
| |
09-03-2009
| #1 (permalink) |
| Vista Ultimate 64-bit, SP2 | Microsoft rejects call to fix SQL password-exposure risk Unpatched and staying that way. Microsoft is butting heads with a company that provides software for database security over a weakness in SQL Server that can expose user passwords to anyone with administrative access to the program. Researchers at San Mateo, California-based Sentrigo warned Wednesday that the "significant vulnerability" is present in the 2000, 2005, and 2008 versions of SQL Server that use the mixed authentication mode, aka the SQL Server and Windows Authentication Mode. While those with administrative privileges typically have the ability to change others' passwords, they should never be able to view those access codes in the clear, they say. Further info - Microsoft rejects call to fix SQL password-exposure risk • The Register |
My System Specs |
|
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| Vulnerability in Microsoft Server Message Block implementation [Vista most at Risk!] | System Security | |||
| Really stuck with subsequent web services call checkingusername/password | .NET General | |||
| Window Mail rejects name and password, but brings up email anyway | Vista mail | |||
| Where do I find my isp or who do I need to call to reset password? | Vista mail | |||
| Microsoft Healthcare Users Group and Microsoft Open Call for Entries | Vista News | |||
