| VID |
27113 |
| Severity |
30 |
| Port |
135 |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
The MS SQL server has an unnecessary account.
Microsoft SQL Server version 6.x creates a default non-administrative account with the user ID "probe".While the "probe" account does not have administrative access to the server, it has PUBLIC access and can run queries and access many databases.
* Platforms Affected:
Microsoft SQL Server |
| Recommendation |
* MSSQL account list Check
MSSQL: [SQL Server Management Studio/ Connect to Diagnostic Server/ Security/ Login] Account verification ? delete probe account |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
