MS02-035: MS SQL Installation may leave passwords on system (263968)

medium Nessus Plugin ID 11322


It may be possible to get the remote SQL Server's administrator password.


The installation process for the remote MS SQL Server left files named 'setup.iss' on the remote host. These files contain the password assigned to the 'sa' account of the remote database.

An attacker who manages to view these files may be able to leverage this issue to gain full administrative access to the application.


Microsoft has released a set of patches for SQL Server 7 and 2000.

See Also

Plugin Details

Severity: Medium

ID: 11322

File Name: smb_nt_ms02-035.nasl

Version: 1.45

Type: local

Agent: windows

Published: 3/6/2003

Updated: 11/15/2018

Risk Information


Risk Factor: Low

Score: 3.4


Risk Factor: Medium

Base Score: 4.6

Temporal Score: 3.4

Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: E:U/RL:OF/RC:C


Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.6

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Temporal Vector: E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:microsoft:sql_server

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Ease: No known exploits are available

Patch Publication Date: 7/10/2002

Vulnerability Publication Date: 7/10/2002

Reference Information

CVE: CVE-2002-0643

BID: 5203

CERT: 338195

MSFT: MS02-035

MSKB: 263968