CVE-2002-0621

3 documents3 sources
Severity
5.0MEDIUM
EPSS
16.7%
top 5.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Commerce Server
Timeline
PublishedJul 3
Latest updateApr 30

Description

Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the process to fail or run arbitrary code in the LocalSystem security context via certain input to the OWC package installer.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-f6pp-c322-6qjv: Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the proce2022-04-30
CVEList
CVE-2002-0621: Buffer overflow in the Office Web Components (OWC) package installer used by Microsoft Commerce Server 2000 allows remote attackers to cause the proce2003-04-02
CVE-2002-0621 (MEDIUM CVSS 5) | Buffer overflow in the Office Web C | cvebase.io