Published: 23/07/2002 Updated: 12/10/2018

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows remote malicious users to gain control of the database and execute arbitrary code via SQL Server Authentication, aka "Unchecked Buffer in Password Encryption Procedure."

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft msde 2000
microsoft sql server 2000

source: wwwsecurityfocuscom/bid/5014/info A buffer overflow vulnerability has been reported in SQL Server 2000 The vunerability is a result of an unchecked buffer when using the password encrypt procedure This procedure is used by administrators to provides support for the storage of SQL Server Authentication credentials The overrun c ...

NVD-CWE-Other http://www.cert.org/advisories/CA-2002-22.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A291 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034 https://nvd.nist.gov https://www.exploit-db.com/exploits/21549/https://www.kb.cert.org/vuls/id/225555

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-0624

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect