Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
microsoft sql server 2000 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2002-0649
Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote malicious users to cause a denial of service or execute arbitrary code via UDP packets to port 1434 in which (1) a 0x04 byte that causes the SQL...
Microsoft Data Engine 2000
Microsoft Sql Server 2000
2 EDB exploits
5
CVSSv2
CVE-2002-0729
Microsoft SQL Server 2000 allows remote malicious users to cause a denial of service via a malformed 0x08 packet that is missing a colon separator.
Microsoft Sql Server 2000
7.5
CVSSv2
CVE-2002-0644
Buffer overflow in several Database Consistency Checkers (DBCCs) for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 allows members of the db_owner and db_ddladmin roles to execute arbitrary code.
Microsoft Data Engine 2000
Microsoft Sql Server 2000
1 EDB exploit
7.5
CVSSv2
CVE-2002-0645
SQL injection vulnerability in stored procedures for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 may allow authenticated users to execute arbitrary commands.
Microsoft Data Engine 2000
Microsoft Sql Server 2000
5
CVSSv2
CVE-2002-0650
The keep-alive mechanism for Microsoft SQL Server 2000 allows remote malicious users to cause a denial of service (bandwidth consumption) via a "ping" style packet to the Resolution Service (UDP port 1434) with a spoofed IP address of another SQL Server system, which ca...
Microsoft Sql Server 2000
7.5
CVSSv2
CVE-2002-0695
Buffer overflow in the Transact-SQL (T-SQL) OpenRowSet component of Microsoft Data Access Components (MDAC) 2.5 up to and including 2.7 for SQL Server 7.0 or 2000 allows remote malicious users to execute arbitrary code via a query that calls the OpenRowSet command.
Microsoft Data Access Components 2.1.1.3711.11
Microsoft Data Access Components 2.12.4202.3
Microsoft Data Access Components 2.6
Microsoft Data Access Components 2.5
Microsoft Data Access Components 2.7
Microsoft Data Access Components 1.5
Microsoft Microsoft Data Access Components 2.12.4292.3 Ga Clean
Microsoft Data Access Components 2.0
Microsoft Data Access Components 2.1
10
CVSSv2
CVE-2000-1209
The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engine (MSDE) 1.0, including third party packages that use these products such as (4) Tumbleweed Secure Mail (MMS) (5) Compaq Insight Manager, a...
Compaq Insight Manager Xe 2.1b
Microsoft Data Engine 1.0
Compaq Insight Manager Xe 1.1
Compaq Insight Manager Xe 1.21
Compaq Insight Manager Xe 2.1
Compaq Insight Manager 7.0
Compaq Insight Manager Xe 2.1c
Microsoft Msde 2000
Compaq Insight Manager Xe 2.2
2 EDB exploits
7.5
CVSSv2
CVE-2002-0624
Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows remote malicious users to gain control of the database and execute arbitrary code via SQL Server Authentication, aka "Unchecked...
Microsoft Msde 2000
Microsoft Sql Server 2000
1 EDB exploit
4.6
CVSSv2
CVE-2002-0643
The installation of Microsoft Data Engine 1.0 (MSDE 1.0), and Microsoft SQL Server 2000 creates setup.iss files with insecure permissions and does not delete them after installation, which allows local users to obtain sensitive data, including weakly encrypted passwords, to gain ...
Microsoft Sql Server 7.0
Microsoft Data Engine 1.0
Microsoft Sql Server 2000
7.5
CVSSv2
CVE-2002-0641
Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows attackers with database administration privileges to execute arbitrary code via a long filename in the BULK INSERT query.
Microsoft Sql Server 2000
Microsoft Msde 2000
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »