MS02-035: MS SQL Installation may leave passwords on system (263968)

Medium Nessus Plugin ID 11322


It may be possible to get the remote SQL Server's administrator password.


The installation process for the remote MS SQL Server left files named 'setup.iss' on the remote host. These files contain the password assigned to the 'sa' account of the remote database.

An attacker who manages to view these files may be able to leverage this issue to gain full administrative access to the application.


Microsoft has released a set of patches for SQL Server 7 and 2000.

See Also

Plugin Details

Severity: Medium

ID: 11322

File Name: smb_nt_ms02-035.nasl

Version: $Revision: 1.43 $

Type: local

Agent: windows

Published: 2003/03/06

Modified: 2017/05/26

Dependencies: 57033, 13855

Risk Information

Risk Factor: Medium


Base Score: 4.6

Temporal Score: 4

Vector: CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:H/RL:OF/RC:C


Base Score: 5.3

Temporal Score: 5.1

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:sql_server

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: true

Exploit Ease: No exploit is required

Patch Publication Date: 2002/07/10

Vulnerability Publication Date: 2002/07/10

Reference Information

CVE: CVE-2002-0643

BID: 5203

OSVDB: 10141

CERT: 338195

MSFT: MS02-035

MSKB: 263968