CVE-2010-0616

CVE-2010-0616 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

evalSMSI 2.1.03 stores passwords in cleartext in the database, which allows attackers with database access to gain privileges. NOTE: remote attack vectors are possible by leveraging a separate SQL injection vulnerability.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.