Lucene search

[email protected]CVE-2002-0620

HistoryJul 03, 2002 - 4:00 a.m.

CVE-2002-0620

2002-07-0304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

microsoft

commerce server

buffer overflow

cve-2002-0620

security vulnerability

remote code execution

8.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.059 Low

EPSS

Percentile

93.4%

JSON

Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in the LocalSystem security context via an input field using an affected API.

CPENameOperatorVersion
microsoft:commerce_servermicrosoft commerce servereq2000

CPE	Name	Operator	Version
microsoft:commerce_server	microsoft commerce server	eq	2000

References

www.securityfocus.com/bid/4853

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-033

8.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.059 Low

EPSS

Percentile

93.4%

JSON

Related for CVE-2002-0620

cvelist1