CVE-2000-0603 — Microsoft SQL Server vulnerability

3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.8%

top 26.27%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft SQL Server

Timeline

PublishedJul 7

Latest updateApr 30

Description

Microsoft SQL Server 7.0 allows a local user to bypass permissions for stored procedures by referencing them via a temporary stored procedure, aka the "Stored Procedure Permissions" vulnerability.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/sql_server7.0

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-vf9c-hw5f-pr3r: Microsoft SQL Server 7↗2022-04-30

▶

CVEList

CVE-2000-0603: Microsoft SQL Server 7↗2000-10-13

▶