CVE-2002-1123

Currently unrated

Key Information:

Vendor: Microsoft
Status: Sql Server; Data Engine
Vendor: CVE Published:; 24 September 2002

Summary

Buffer overflow in the authentication function for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 allows remote attackers to execute arbitrary code via a long request to TCP port 1433, aka the "Hello" overflow.

References

http://online.securityfocus.com/archive/1/286220

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/5411

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

96% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Sep 24, 2002
Vulnerability Reserved
Sep 11, 2002

Collectors

NVD DatabaseMitre Database