Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2000-1088
HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-1088

2000-12-1905:00:00
mitre
www.cve.org
5

AI Score

7.6

Confidence

High

EPSS

0.377

Percentile

97.2%

JSON

The xp_SetSQLSecurity function in Microsoft SQL Server 2000 and SQL Server Desktop Engine (MSDE) does not properly restrict the length of a buffer before calling the srv_paraminfo function in the SQL Server API for Extended Stored Procedures (XP), which allows an attacker to cause a denial of service or execute arbitrary commands, aka the β€œExtended Stored Procedure Parameter Parsing” vulnerability.

Related

nvd 1
cve 1
openvas 1
nvd
nvd
CVE-2000-1088
2001-01-09 05:00:00
cve
cve
CVE-2000-1088
2001-01-09 05:00:00
openvas
openvas
Microsoft SQL (MSSQL) Server 6, 7, 2000 Multiple Vulnerabilities
2006-03-26 00:00:00

AI Score

7.6

Confidence

High

EPSS

0.377

Percentile

97.2%

JSON
Related for CVELIST:CVE-2000-1088
nvd1cve1openvas1