CVE-2002-0622

3 documents3 sources
Severity
7.5HIGH
EPSS
10.3%
top 6.84%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Commerce Server
Timeline
PublishedJul 3
Latest updateApr 30

Description

The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote attackers to execute commands by passing the commands as input to the OWC package installer, aka "OWC Package Command Execution".

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-m6j2-mmwr-qqr9: The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote attackers to execute commands by passing the comman2022-04-30
CVEList
CVE-2002-0622: The Office Web Components (OWC) package installer for Microsoft Commerce Server 2000 allows remote attackers to execute commands by passing the comman2003-04-02
CVE-2002-0622 (HIGH CVSS 7.5) | The Office Web Components (OWC) pac | cvebase.io