What is CVE-2002-0649?

CVE-2002-0649 is a vulnerability in N/a. Published 2002-07-26.

Is CVE-2002-0649 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2002-0649

Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to cause a denial of service or execute arbitrary code via UDP packets to port 1434 in which…

EPSS: 0.861 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

20030126 RE: MS SQL WORM IS DESTROYING INTERNET BLOCK PORT 1434! (mailing-list, x_refsource_BUGTRAQ)
20030125 Sapphire SQL Worm Analysis Complete (mailing-list, x_refsource_BUGTRAQ)
oval:org.mitre.oval:def:1077 (signature, x_refsource_OVAL, vdb-entry)
CA-2002-22 (x_refsource_CERT, third-party-advisory)
VU#484891 (x_refsource_CERT-VN, third-party-advisory)
VU#399260 (x_refsource_CERT-VN, third-party-advisory)
20020725 Microsoft SQL Server 2000 Unauthenticated System Compromise (#NISR25072002) (mailing-list, x_refsource_NTBUGTRAQ)
7945 (x_refsource_SECUNIA, third-party-advisory)
20030128 Re: MSDE contained in... (mailing-list, x_refsource_BUGTRAQ)
20030125 Re: MS SQL WORM IS DESTROYING INTERNET BLOCK PORT 1434! (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2002-0649?: CVE-2002-0649 is a vulnerability in N/a. Published 2002-07-26.
Is CVE-2002-0649 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.