SQL server

Securityadmin vs Sysadmin. Security issue.

In SQL 2005 and 2008 there is an issue I have with adding non-DBA logins to the securityadmin role. Apart from the fact that the securityadmin has high privileges in itself, there is a loop hole you can use to get access to the SA login. Try the following:

  1. Create a new user sqluser.
  2. Issue command grant control server to sqluser.
  3. Logout of server and login as sqluser.
  4. Change the password of the SA account to something you know.
  5. Logout of the server and login as SA using the newly created password.

You have now effectively logged into a server as SA without having to know what the SA password was.


Thinking about someting? Leave a Reply...

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s