Heap-based Buffer Overflow in Microsoft Data Access Components and Internet Explorer
CVE-2002-1142

Currently unrated

Key Information:

Vendor: Microsoft
Status: Ie; Data Access Components; Internet Explorer
Vendor: CVE Published:; 29 November 2002

Summary

A heap-based buffer overflow vulnerability exists in the Remote Data Services (RDS) component within the Microsoft Data Access Components versions 2.1 through 2.6 and Internet Explorer versions 5.01 through 6.0. This flaw allows remote attackers to exploit the vulnerability by sending a specially crafted HTTP request to the Data Stub. Successful exploitation could lead to the execution of arbitrary code, potentially compromising the system where the affected software is running.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/...

mailing-listx_refsource_VULNWATCH

http://www.securityfocus.com/bid/6214

vdb-entryx_refsource_BID

EPSS Score

83% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Nov 29, 2002
Vulnerability Reserved
Sep 23, 2002