CVE-2002-0620

3 documents3 sources
Severity
5.0MEDIUM
EPSS
16.0%
top 5.22%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Commerce Server
Timeline
PublishedJul 3
Latest updateApr 30

Description

Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in the LocalSystem security context via an input field using an affected API.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-hgcf-962c-hq55: Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in2022-04-30
CVEList
CVE-2002-0620: Buffer overflow in the Profile Service of Microsoft Commerce Server 2000 allows remote attackers to cause the server to fail or run arbitrary code in2002-07-01
CVE-2002-0620 (MEDIUM CVSS 5) | Buffer overflow in the Profile Serv | cvebase.io