SQL Injection Vulnerability in Microsoft Content Management Server 2001
CVE-2002-0719

Currently unrated

Key Information:

Vendor: Microsoft
Status: Content Management Server
Vendor: CVE Published:; 12 August 2002

What is CVE-2002-0719?

The SQL injection vulnerability in Microsoft Content Management Server (MCMS) 2001 enables remote attackers to exploit the system by sending crafted requests that manipulate SQL queries executed on the server. This flaw particularly affects how the server processes resource requests for image files and other file types, allowing attackers to execute arbitrary commands, potentially leading to unauthorized access and data manipulation.

References

http://www.securityfocus.com/bid/5422

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.iss.net/security_center/static/9785.php

vdb-entryx_refsource_XF

EPSS Score

6% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2002
Vulnerability Reserved
Jul 22, 2002