Commerce Server Security Vulnerabilities and Issues — Commerce Server CVE List

Lucene search

MicrosoftCommerce Server

3 matches found

CVE•added 2003/04/02 5:0 a.m.•37 views

CVE-2002-0621

Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package installer.

5CVSS7.9AI score0.16667EPSS

CVE•added 2003/04/02 5:0 a.m.•34 views

CVE-2002-0623

Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote attackers to execute arbitrary code via long authentication data, aka "New Variant of the ISAPI Filter Buffer Overrun".

7.5CVSS8.5AI score0.17282EPSS

CVE•added 2003/04/02 5:0 a.m.•28 views

CVE-2002-0622

The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote attackers to execute commands by passing the commands as input to the OWC package installer, aka "OWC Package Command Execution".

7.5CVSS7.7AI score0.10267EPSS