CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
98.7%
Heap-based buffer overflow in the Remote Data Services (RDS) component of Microsoft Data Access Components (MDAC) 2.1 through 2.6, and Internet Explorer 5.01 through 6.0, allows remote attackers to execute code via a malformed HTTP request to the Data Stub.
Vendor | Product | Version | CPE |
---|---|---|---|
microsoft | data_access_components | 2.1 | cpe:2.3:a:microsoft:data_access_components:2.1:*:*:*:*:*:*:* |
microsoft | data_access_components | 2.5 | cpe:2.3:a:microsoft:data_access_components:2.5:*:*:*:*:*:*:* |
microsoft | data_access_components | 2.6 | cpe:2.3:a:microsoft:data_access_components:2.6:*:*:*:*:*:*:* |
microsoft | ie | 6.0 | cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:* |
microsoft | internet_explorer | 5.0.1 | cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:* |
microsoft | internet_explorer | 5.0.1 | cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:* |
microsoft | internet_explorer | 5.0.1 | cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:* |
microsoft | internet_explorer | 5.5 | cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:* |
microsoft | internet_explorer | 5.5 | cpe:2.3:a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:* |
microsoft | internet_explorer | 5.5 | cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:* |
archives.neohapsis.com/archives/vulnwatch/2002-q4/0082.html
www.cert.org/advisories/CA-2002-33.html
www.foundstone.com/knowledge/randd-advisories-display.html?id=337
www.kb.cert.org/vuls/id/542081
www.securityfocus.com/bid/6214
docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-065
exchange.xforce.ibmcloud.com/vulnerabilities/10659
exchange.xforce.ibmcloud.com/vulnerabilities/10669
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2730
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A294
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3573