CVE-2002-0623

3 documents3 sources

Severity

7.5HIGH

EPSS

17.3%

top 4.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Commerce Server

Timeline

PublishedJul 3

Latest updateApr 30

Description

Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote attackers to execute arbitrary code via long authentication data, aka "New Variant of the ISAPI Filter Buffer Overrun".

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/commerce_server2000, 2002+1

🔴Vulnerability Details

GHSA

GHSA-vhj6-9mrq-55vx: Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote attackers to execute arbitrary code via long authe↗2022-04-30

▶

CVEList

CVE-2002-0623: Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote attackers to execute arbitrary code via long authe↗2003-04-02

▶