Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-0649

CWE-119Buffer Overflow8 documents6 sources
Severity
7.5HIGH
EPSS
85.8%
top 0.62%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Microsoft Data EngineMicrosoft SQL Server
Timeline
PublishedAug 12
Latest updateApr 30

Description

Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to cause a denial of service or execute arbitrary code via UDP packets to port 1434 in which (1) a 0x04 byte that causes the SQL Monitor thread to generate a long registry key name, or (2) a 0x08 byte with a long string causes heap corruption, as exploited by the Slammer/Sapphire worm.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

🔴Vulnerability Details

3
GHSA
GHSA-r8jr-r79v-cghp: Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to c2022-04-30
CVEList
CVE-2002-0649: Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to c2002-07-26
VulnCheck
Microsoft data_engine Improper Restriction of Operations within the Bounds of a Memory Buffer2002

💥Exploits & PoCs

2
Exploit-DB
Microsoft SQL Server - Resolution Overflow (MS02-039) (Metasploit)2010-04-30
Exploit-DB
Microsoft SQL Server 2000 - Resolution Service Heap Overflow2002-07-25

🔍Detection Rules

2
Suricata
GPL WORM Slammer Worm propagation attempt OUTBOUND2010-09-23
Suricata
GPL SQL Slammer Worm propagation attempt2010-09-23