CVE-2000-0199: When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set…

CVE-2000-0199 [HIGH] Microsoft SQL Server 6.5/7.0 Enterprise Manager missing encryption (Nessus ID 11870 / XFDB-4366) A vulnerability was found in Microsoft SQL Server 6.5/7.0 and classified as problematic. Affected by this issue is some unknown functionality of the component Enterprise Manager. The manipulation results in missing encryption of sensitive data. This vulnerability is known as CVE-2000-0199. Attacking locally is a requirement. No exploit is available. It is suggested to upgrade the affected component.

CVE-2000-0199 [HIGH] GHSA-5xgx-wrh9-vgf4: When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7 When a new SQL Server is registered in Enterprise Manager for Microsoft SQL Server 7.0 and the "Always prompt for login name and password" option is not set, then the Enterprise Manager uses weak encryption to store the login ID and password.