CVE-1999-1556

CVSS 7.2 - HIGH

Description

Microsoft SQL Server 6.5 uses weak encryption for the password for the SQLExecutiveCmdExec account and stores it in an accessible portion of the registry, which could allow local users to gain privileges by reading and decrypting the CmdExecAccount value.

Affected Products

1

Vendor	Product	Version
microsoft	sql_server	`6.5`

References

http://marc.info/?l=ntbugtraq&m=90222453431645&w=2

http://www.securityfocus.com/bid/109

https://exchange.xforce.ibmcloud.com/vulnerabiliti...

http://marc.info/?l=ntbugtraq&m=90222453431645&w=2

http://www.securityfocus.com/bid/109

https://exchange.xforce.ibmcloud.com/vulnerabiliti...

Weakness Types

NVD-CWE-Other

CVE Information

CVE ID:: CVE-1999-1556
Published:: 1998-06-29
Modified:: 2026-04-16
CVSS Score:: 7.2
Severity:: HIGH
Vector:: AV:L/AC:L/Au:N/C:C/I:C/A:C

Affected Vendors

microsoft

Quick Actions

View on NVD Find Similar CVEs

CVSS Severity Scale

0.0 - 3.9 LOW

4.0 - 6.9 MEDIUM

7.0 - 8.9 HIGH

9.0 - 10.0 CRITICAL