7.5

CVE-2002-0641

EPSS 16.41%
Published 23.07.2002 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in bulk insert procedure of Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, allows attackers with database administration privileges to execute arbitrary code via a long filename in the BULK INSERT query.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Msde Version2000

Microsoft ≫ Sql Server Version2000

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	16.41%	0.943

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034

http://marc.info/?l=bugtraq&m=102639885223746&w=2

http://www.kb.cert.org/vuls/id/682620

US Government Resource

http://www.ngssoftware.com/advisories/ms-sqlbi.txt

http://www.securityfocus.com/bid/4847

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A316

https://nvd.nist.gov/vuln/detail/CVE-2002-0641

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2002-0641

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2002-0641

EUVD