Lucene search
HistoryOct 13, 2000 - 4:00 a.m.
CVE-2000-0603
microsoft
sql server 7.0
stored procedure permissions
vulnerability
bypass permissions
local user
cve-2000-0603
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
16.2%
Microsoft SQL Server 7.0 allows a local user to bypass permissions for stored procedures by referencing them via a temporary stored procedure, aka the “Stored Procedure Permissions” vulnerability.
Affected configurations
Node
microsoftsql_serverMatch7.0
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:sql_server | microsoft sql server | eq | 7.0 |
Related
cvelist
cvelist
CVE-2000-0603
2000-10-13 04:00:00
nvd
nvd
CVE-2000-0603
2000-07-07 04:00:00
openvas
openvas
Microsoft SQL (MSSQL) Server 6, 7, 2000 Multiple Vulnerabilities
2006-03-26 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
6.7 Medium
AI Score
Confidence
Low
0.0005 Low
EPSS
Percentile
16.2%
Related for CVE-2000-0603