CVE-2003-0230

Currently unrated

Key Information:

Vendor: Microsoft
Status: Sql Server; Data Engine
Vendor: CVE Published:; 27 August 2003

Summary

Microsoft SQL Server 7, 2000, and MSDE allows local users to gain privileges by hijacking a named pipe during the authentication of another user, aka the "Named Pipe Hijacking" vulnerability.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.kb.cert.org/vuls/id/556356

third-party-advisoryx_refsource_CERT-VN

EPSS Score

25% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 27, 2003
Vulnerability Reserved
Apr 30, 2003

Collectors

NVD DatabaseMitre Database