Lucene search

[email protected]NVD:CVE-2002-0622

HistoryJul 03, 2002 - 4:00 a.m.

CVE-2002-0622

2002-07-0304:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.031

Percentile

91.1%

JSON

The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote attackers to execute commands by passing the commands as input to the OWC package installer, aka “OWC Package Command Execution”.

Affected configurations

Nvd

Node

microsoftcommerce_serverMatch2000

microsoftcommerce_serverMatch2000sp1

microsoftcommerce_serverMatch2000sp2

VendorProductVersionCPE
microsoftcommerce_server2000cpe:2.3:a:microsoft:commerce_server:2000:*:*:*:*:*:*:*
microsoftcommerce_server2000cpe:2.3:a:microsoft:commerce_server:2000:sp1:*:*:*:*:*:*
microsoftcommerce_server2000cpe:2.3:a:microsoft:commerce_server:2000:sp2:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	commerce_server	2000	cpe:2.3:a:microsoft:commerce_server:2000:::::::*
microsoft	commerce_server	2000	cpe:2.3:a:microsoft:commerce_server:2000:sp1::::::
microsoft	commerce_server	2000	cpe:2.3:a:microsoft:commerce_server:2000:sp2::::::

References

www.iss.net/security_center/static/9425.php

www.osvdb.org/5170

www.securityfocus.com/bid/5111

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-033

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.3

Confidence

Low

EPSS

0.031

Percentile

91.1%

JSON

Related for NVD:CVE-2002-0622

cve1 cvelist1