CVE-2002-1433
published 2003-04-11CVE-2002-1433: Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services.
PriorityP416medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
1.61%
73.0th percentile
Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kerio | kerio_mailserver | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
GPL NETBIOS xp_reg* - registry access
suricata·2010-09-23
CVE-2002-0642 GPL NETBIOS xp_reg* - registry access
GPL NETBIOS xp_reg* - registry access
Rule: alert tcp $EXTERNAL_NET any -> $SQL_SERVERS 1433 (msg:"GPL NETBIOS xp_reg* - registry access"; flow:established,to_server; content:"x|00|p|00|_|00|r|00|e|00|g|00|"; nocase; reference:bugtraq,5205; reference:cve,2002-0642; reference:nessus,10642; reference:url,www.microsoft.com/technet/security/bulletin/MS02-034; classtype:attempted-user; sid:2100686; rev:12; metadata:created_at 2010_09_23, cve CVE_2002_0642, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Exploit-DB
Microsoft SQL Server - Hello Overflow (MS02-056) (Metasploit)
exploitdb·2010-04-30
CVE-2002-1123 Microsoft SQL Server - Hello Overflow (MS02-056) (Metasploit)
Microsoft SQL Server - Hello Overflow (MS02-056) (Metasploit)
---
##
# $Id: ms02_056_hello.rb 9179 2010-04-30 08:40:19Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'Microsoft SQL Server Hello Overflow',
'Description' => %q{
By sending malformed data to TCP port 1433, an
unauthenticated remote attacker could overflow a buffer and
possibly execute code on the server with SYSTEM level
privileges. This module should work against any vulnerable
SQL Server 2000 or MSDE install ( [ 'MC' ],
'License' => MSF_LICENSE,
'Version' => '$Revisi
Exploit-DB
Microsoft SQL Server 2000 - User Authentication Remote Buffer Overflow
exploitdb·2002-08-06·CVSS 2.1
CVE-2002-1123 [LOW] Microsoft SQL Server 2000 - User Authentication Remote Buffer Overflow
Microsoft SQL Server 2000 - User Authentication Remote Buffer Overflow
---
source: https://www.securityfocus.com/bid/5411/info
A vulnerability has been discovered in Microsoft SQL Server that could make it possible for remote attackers to gain access to target hosts.
It is possible for an attacker to cause a buffer overflow condition on the vulnerable SQL server with a malformed login request. This may allow a remote attacker to execute arbitrary code as the SQL Server process.
This vulnerability reportedly occurs even before authentication can proceed.
##
#
# this script tests for the "You had me at hello" overflow
# in MSSQL (tcp/1433)
# Copyright Dave Aitel (2002)
# Bug found by: Dave Aitel (2002)
#
##
#TODO:
#techically we should also go to the UDP 1434 resolver service
#and get
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2002-08/0183.htmlhttp://www.iss.net/security_center/static/9904.phphttp://www.securityfocus.com/bid/5505http://archives.neohapsis.com/archives/bugtraq/2002-08/0183.htmlhttp://www.iss.net/security_center/static/9904.phphttp://www.securityfocus.com/bid/5505
2003-04-11
Published