CVE-2002-0224

3 documents3 sources

Severity

5.0MEDIUM

EPSS

58.3%

top 1.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Information Services Microsoft SQL Server

Timeline

PublishedMay 16

Latest updateApr 30

Description

The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5.0 and SQL Server 6.5 through SQL 2000 0.0 allows remote attackers to cause a denial of service (crash or hang) via malformed (random) input.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDmicrosoft/internet_information_services5.0

▶NVDmicrosoft/sql_server2000, 6.5, 7.0+2

🔴Vulnerability Details

GHSA

GHSA-xrq7-8rcw-5wqv: The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5↗2022-04-30

▶

CVEList

CVE-2002-0224: The MSDTC (Microsoft Distributed Transaction Service Coordinator) for Microsoft Windows 2000, Microsoft IIS 5↗2002-05-03

▶