Vulnerability in N/a
CVE-2002-0186
Buffer overflow in the SQLXML ISAPI extension of Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code via data queries with a long content-type parameter, aka "Unchecked Buffer in SQLXML ISAPI Extension."
EPSS: 0.734 (98.8th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- VU#811371 (x_refsource_CERT-VN, third-party-advisory)
- 5347 (x_refsource_OSVDB, vdb-entry)
- 20020613 [VulnWatch] wp-02-0007: Microsoft SQLXML ISAPI Overflow and Cross Site Scripting (mailing-list, x_refsource_VULNWATCH)
- MS02-030 (x_refsource_MS, vendor-advisory)
- 5004 (vdb-entry, x_refsource_BID)
- mssql-sqlxml-isapi-bo(9328) (vdb-entry, x_refsource_XF)
- oval:org.mitre.oval:def:484 (signature, x_refsource_OVAL, vdb-entry)
- oval:org.mitre.oval:def:489 (signature, x_refsource_OVAL, vdb-entry)
- 20020613 wp-02-0007: Microsoft SQLXML ISAPI Overflow and Cross Site Scripting (mailing-list, x_refsource_BUGTRAQ)