CVE-2002-0649 in SQL Serverinformazioni

Riassunto

di MITRE

Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to cause a denial of service or execute arbitrary code via UDP packets to port 1434 in which (1) a 0x04 byte that causes the SQL Monitor thread to generate a long registry key name, or (2) a 0x08 byte with a long string causes heap corruption, as exploited by the Slammer/Sapphire worm.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

12/08/2002

Moderazione

accettato

Voce

VDB-18597

CPE

pronto

CWE

CWE-119 (confermato)

Sfruttamento

Scaricare

CVSS

7.5 (NVD)

EPSS

0.84750

KEV

Attività

molto basso

Settore

Energy, Pharma, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0649
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0649
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0649/

◂ Precedente Visione D'ensemble Il prossimo ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!