CVE-2002-0624

EPSS 7.2%
Published 23.07.2002 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in the password encryption function of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows remote attackers to gain control of the database and execute arbitrary code via SQL Server Authentication, aka "Unchecked Buffer in Password Encryption Procedure."

Affected products Warnungen 0 Metrics 2 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Msde Version2000

Microsoft ≫ Sql Server Version2000

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	7.2%	0.907

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.cert.org/advisories/CA-2002-22.html

US Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A291

https://nvd.nist.gov/vuln/detail/CVE-2002-0624

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0624

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0624

EUVD