Buffer Overflow Vulnerability in Microsoft Commerce Server by Microsoft
CVE-2002-0623

Currently unrated

Key Information:

Vendor: Microsoft
Status: Commerce Server
Vendor: CVE Published:; 3 July 2002

Summary

A buffer overflow vulnerability exists in the AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002. This flaw allows remote attackers to execute arbitrary code by sending overly long authentication data to the affected server, potentially compromising the system's integrity and security. It is crucial for organizations using these versions of Microsoft Commerce Server to apply the necessary patches to mitigate the risks associated with this vulnerability.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securityfocus.com/bid/5112

vdb-entryx_refsource_BID

http://www.osvdb.org/5163

vdb-entryx_refsource_OSVDB

EPSS Score

17% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 3, 2002
Vulnerability Reserved
Jun 12, 2002