7.5
CVE-2002-0622
- EPSS 19.38%
- Veröffentlicht 03.07.2002 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:57:47
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote attackers to execute commands by passing the commands as input to the OWC package installer, aka "OWC Package Command Execution".
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Commerce Server Version2000
Microsoft ≫ Commerce Server Version2000 Updatesp1
Microsoft ≫ Commerce Server Version2000 Updatesp2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 19.38% | 0.97 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-033
http://www.iss.net/security_center/static/9425.php
http://www.osvdb.org/5170
http://www.securityfocus.com/bid/5111