Lucene search

[email protected]CVE-2000-0202

HistoryApr 10, 2000 - 4:00 a.m.

CVE-2000-0202

2000-04-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2000-0202

sql server 7.0

msde 1.0

privilege escalation

sql query

microsoft.

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Microsoft SQL Server 7.0 and Microsoft Data Engine (MSDE) 1.0 allow remote attackers to gain privileges via a malformed Select statement in an SQL query.

Affected configurations

NVD

Node

microsoftdata_engineMatch1.0

microsoftsql_serverMatch7.0

CPENameOperatorVersion
microsoft:data_enginemicrosoft data engineeq1.0
microsoft:sql_servermicrosoft sql servereq7.0

CPE	Name	Operator	Version
microsoft:data_engine	microsoft data engine	eq	1.0
microsoft:sql_server	microsoft sql server	eq	7.0

References

www.securityfocus.com/bid/1041

docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-014

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

Low

0.027 Low

EPSS

Percentile

90.6%

JSON

Related for CVE-2000-0202

nvd1 cvelist1 openvas1