Lucene search

[email protected]CVE-2002-0154

HistoryMay 16, 2002 - 4:00 a.m.

CVE-2002-0154

2002-05-1604:00:00

[email protected]

web.nvd.nist.gov

cve-2002-0154

buffer overflow

ms sql server

remote attack

denial of service

code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.064 Low

EPSS

Percentile

93.7%

JSON

Buffer overflows in extended stored procedures for Microsoft SQL Server 7.0 and 2000 allow remote attackers to cause a denial of service or execute arbitrary code via a database query with certain long arguments.

Affected configurations

NVD

Node

microsoftsql_serverMatch7.0

microsoftsql_serverMatch7.0sp1

microsoftsql_serverMatch7.0sp2

microsoftsql_serverMatch7.0sp3

microsoftsql_serverMatch2000

microsoftsql_serverMatch2000sp1

microsoftsql_serverMatch2000sp2

CPENameOperatorVersion
microsoft:sql_servermicrosoft sql servereq7.0
microsoft:sql_servermicrosoft sql servereq2000

CPE	Name	Operator	Version
microsoft:sql_server	microsoft sql server	eq	7.0
microsoft:sql_server	microsoft sql server	eq	2000

References

marc.info/?l=bugtraq&m=101535353331625&w=2

www.cert.org/advisories/CA-2002-22.html

www.kb.cert.org/vuls/id/627275

www.securityfocus.com/archive/1/261775

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-020

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A121

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

High

0.064 Low

EPSS

Percentile

93.7%

JSON

Related for CVE-2002-0154

nvd1 cert1 cvelist1 openvas1