Lucene search
MitreCVE-2002-0621HistoryApr 02, 2003 - 5:00 a.m.
CVE-2002-0621
2003-04-0205:00:00
mitre
web.nvd.nist.gov
29
cve-2002-0621
buffer overflow
office web components
microsoft commerce server 2000
nvd
security vulnerability
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.9
Confidence
High
EPSS
0.381
Percentile
97.3%
Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package installer.
Affected configurations
Node
microsoftcommerce_serverMatch2000
ORmicrosoftcommerce_serverMatch2000sp1
ORmicrosoftcommerce_serverMatch2000sp2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | commerce_server | 2000 | cpe:2.3:a:microsoft:commerce_server:2000:*:*:*:*:*:*:* |
| microsoft | commerce_server | 2000 | cpe:2.3:a:microsoft:commerce_server:2000:sp1:*:*:*:*:*:* |
| microsoft | commerce_server | 2000 | cpe:2.3:a:microsoft:commerce_server:2000:sp2:*:*:*:*:*:* |
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
7.9
Confidence
High
EPSS
0.381
Percentile
97.3%
Related for CVE-2002-0621