Sql Server@2000 Security Vulnerabilities and Issues — Sql Server@2000 CVE List

Lucene search

MicrosoftSql Server2000

4 matches found

CVE•added 2004/09/01 4:0 a.m.•150 views

CVE-2002-1123

Buffer overflow in the authentication function for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 allows remote attackers to execute arbitrary code via a long request to TCP port 1433, aka the "Hello" overflow.

7.5CVSS8AI score0.89144EPSS

CVE•added 2004/09/01 4:0 a.m.•49 views

CVE-2002-1138

Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine (MSDE) 1.0 and Microsoft Desktop Engine (MSDE) 2000, writes output files for scheduled jobs under its own privileges instead of the entity that launched it, which allows attackers to overwrite system files, aka "Flaw in Output File ...

7.5CVSS7.1AI score0.11402EPSS

CVE•added 2004/09/01 4:0 a.m.•45 views

CVE-2002-1137

Buffer overflow in the Database Console Command (DBCC) that handles user inputs in Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine (MSDE) 1.0 and Microsoft Desktop Engine (MSDE) 2000, allows attackers to execute arbitrary code via a long SourceDB argument in a "non-SQL OLEDB data...

7.5CVSS8.1AI score0.18742EPSS

CVE•added 2004/09/01 4:0 a.m.•42 views

CVE-2002-0729

Microsoft SQL Server 2000 allows remote attackers to cause a denial of service via a malformed 0x08 packet that is missing a colon separator.

5CVSS7.1AI score0.15629EPSS