CVE-2002-0624

Currently unrated

Key Information:

Vendor: Microsoft
Status: Sql Server; Msde
Vendor: CVE Published:; 23 July 2002

Summary

Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows remote attackers to gain control of the database and execute arbitrary code via SQL Server Authentication, aka "Unchecked Buffer in Password Encryption Procedure."

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.cert.org/advisories/CA-2002-22.html

third-party-advisoryx_refsource_CERT

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

8% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jul 23, 2002
Vulnerability Reserved
Jun 12, 2002

Collectors

NVD DatabaseMitre Database