Lucene search

[email protected]CVE-2002-0624

HistoryJul 23, 2002 - 4:00 a.m.

CVE-2002-0624

2002-07-2304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

security

buffer overflow

microsoft sql server

cve-2002-0624

nvd

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.081 Low

EPSS

Percentile

94.3%

JSON

Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows remote attackers to gain control of the database and execute arbitrary code via SQL Server Authentication, aka “Unchecked Buffer in Password Encryption Procedure.”

CPENameOperatorVersion
microsoft:sql_servermicrosoft sql servereq2000
microsoft:msdemicrosoft msdeeq2000

CPE	Name	Operator	Version
microsoft:sql_server	microsoft sql server	eq	2000
microsoft:msde	microsoft msde	eq	2000

References

www.cert.org/advisories/CA-2002-22.html

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A291

8.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.081 Low

EPSS

Percentile

94.3%

JSON

Related for CVE-2002-0624

cert1 securityvulns1 openvas1