Lucene search

[email protected]NVD:CVE-2002-0645

HistoryAug 12, 2002 - 4:00 a.m.

CVE-2002-0645

2002-08-1204:00:00

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.001

Percentile

49.2%

JSON

SQL injection vulnerability in stored procedures for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 may allow authenticated users to execute arbitrary commands.

Affected configurations

Nvd

Node

microsoftdata_engineMatch2000

microsoftsql_serverMatch2000

VendorProductVersionCPE
microsoftdata_engine2000cpe:2.3:a:microsoft:data_engine:2000:*:*:*:*:*:*:*
microsoftsql_server2000cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	data_engine	2000	cpe:2.3:a:microsoft:data_engine:2000:::::::*
microsoft	sql_server	2000	cpe:2.3:a:microsoft:sql_server:2000:::::::*

References

docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-038

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.001

Percentile

49.2%

JSON

Related for NVD:CVE-2002-0645

cvelist1 cve1 nessus1