Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 2000 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2000-1086
The xp_printstatements function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an malicious user ...
Microsoft Sql Server 7.0
Microsoft Data Engine 1.0
Microsoft Data Engine 2000
Microsoft Sql Server 2000
4.6
CVSSv2
CVE-2000-1087
The xp_proxiedmetadata function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an malicious user ...
Microsoft Data Engine 1.0
Microsoft Data Engine 2000
Microsoft Sql Server 2000
Microsoft Sql Server 7.0
4.6
CVSSv2
CVE-2000-1088
The xp_SetSQLSecurity function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an malicious user t...
Microsoft Data Engine 2000
Microsoft Sql Server 2000
Microsoft Sql Server 7.0
Microsoft Data Engine 1.0
7.5
CVSSv2
CVE-2002-1137
Buffer overflow in the Database Console Command (DBCC) that handles user inputs in Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine (MSDE) 1.0 and Microsoft Desktop Engine (MSDE) 2000, allows malicious users to execute arbitrary code via a long SourceDB argument...
Microsoft Data Engine 1.0
Microsoft Data Engine 2000
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
7.5
CVSSv2
CVE-2002-1138
Microsoft SQL Server 7.0 and 2000, including Microsoft Data Engine (MSDE) 1.0 and Microsoft Desktop Engine (MSDE) 2000, writes output files for scheduled jobs under its own privileges instead of the entity that launched it, which allows malicious users to overwrite system files, ...
Microsoft Sql Server 7.0
Microsoft Data Engine 2000
Microsoft Sql Server 2000
Microsoft Data Engine 1.0
5
CVSSv2
CVE-2001-0879
Format string vulnerability in the C runtime functions in SQL Server 7.0 and 2000 allows malicious users to cause a denial of service.
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
Microsoft Windows 2000
Microsoft Windows Nt
Microsoft Windows Xp
5
CVSSv2
CVE-2001-0509
Vulnerabilities in RPC servers in (1) Microsoft Exchange Server 2000 and previous versions, (2) Microsoft SQL Server 2000 and previous versions, (3) Windows NT 4.0, and (4) Windows 2000 allow remote malicious users to cause a denial of service via malformed inputs.
Microsoft Exchange Server 5.0
Microsoft Exchange Server 5.5
Microsoft Exchange Server 2000
Microsoft Sql Server 7.0
Microsoft Sql Server 2000
Microsoft Windows Nt 4.0
Microsoft Windows 2000 -
Microsoft Windows 2000
7.5
CVSSv2
CVE-2002-0624
Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows remote malicious users to gain control of the database and execute arbitrary code via SQL Server Authentication, aka "Unchecked...
Microsoft Msde 2000
Microsoft Sql Server 2000
1 EDB exploit
7.5
CVSSv2
CVE-2002-0641
Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows attackers with database administration privileges to execute arbitrary code via a long filename in the BULK INSERT query.
Microsoft Sql Server 2000
Microsoft Msde 2000
7.2
CVSSv2
CVE-2002-0642
The registry key containing the SQL Server service account information in Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, has insecure permissions, which allows local users to gain privileges, aka "Incorrect Permission on SQL Server Serv...
Microsoft Msde 2000
Microsoft Sql Server 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »