An advisory has been released warning users about proper configuration to avoid a SQL Server 7.0 sa password compromise. Kevork Belian pointed out that it's easy to change an sa password on SQL Server 7.0. The situation exists because of improper security permission settings on SQL Server's files. For complete details, refer to http://www.ntsecurity.net/scripts/loader.asp?iD=/security/sql701.htm.