Lucene search
K
MicrosoftCommerce Server2002

4 matches found

CVE
CVE
added 2012/04/10 9:0 p.m.1730 views

CVE-2012-0158

CVE-2012-0158 is a Microsoft/MSCOMCTL.OCX (MS Office) vulnerability that enables remote code execution via a crafted file or document. The initial entry lists vulnerable controls in MSCOMCTL.OCX and notes exploitation in the wild around April 2012 (aka “MSCOMCTL.OCX RCE Vulnerability”). Connected...

9.3CVSS7.8AI score0.99966EPSS
In wild
CVE
CVE
added 2012/08/15 1:0 a.m.1272 views

CVE-2012-1856

CVE-2012-1856 covers a remote code execution vulnerability in the TabStrip ActiveX control (MSCOMCTL.OCX) used by multiple Microsoft Office components and related products. The issue arises from a system-state corruption triggered by crafted (1) documents or (2) web pages, allowing remote attacke...

9.3CVSS7.9AI score0.72119EPSS
In wild
CVE
CVE
added 2006/03/19 1:0 a.m.50 views

CVE-2006-1257

CVE-2006-1257 describes an authentication bypass in Microsoft Commerce Server 2002 prior to SP2. The issue arises when sample files in the web server’s AuthFiles directory are present and a remote attacker can log in to authfiles/login.asp with a valid username and any password, then reach the ma...

7.5CVSS6.8AI score0.3007EPSS
Web
CVE
CVE
added 2003/04/02 5:0 a.m.46 views

CVE-2002-0623

The CVE-2002-0623 entry describes a buffer overflow in the AuthFilter ISAPI filter of Microsoft Commerce Server 2000 and 2002. The vulnerability allows remote attackers to execute arbitrary code by sending long authentication data. Connected documents confirm the affected product and component, a...

7.5CVSS8.5AI score0.19609EPSS