In fact, my MS-SQL Server version is 9.0.1399.0 and it's been reported vulnerable. The vulnerability as I know is MS08-040. The plugin gb_ms08-040.nasl is for it but it detect in registry way, can it be updated too? Since we can detect the version without credentials now, guess there're more NVTs like gb_ms08-040.nasl need to be updated.
flymolon
_______________________________________________ Openvas-discuss mailing list [email protected] https://lists.wald.intevation.org/cgi-bin/mailman/listinfo/openvas-discuss
