CVE-2001-0542

Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.atstake.com/research/advisories/2001/a122001-1.txt	Patch Vendor Advisory
http://www.securityfocus.com/bid/3733	Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/700575	US Government Resource
http://marc.info/?l=bugtraq&m=100891252317406&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A83
https://exchange.xforce.ibmcloud.com/vulnerabilities/7724
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-060

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:sql_server:2000:::::::*
	cpe:2.3:a:microsoft:sql_server:7.0:::::::*

Information

Published : 2001-12-19 21:00

Updated : 2018-10-12 14:30

NVD link : CVE-2001-0542

Mitre link : CVE-2001-0542

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

microsoft

sql_server

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.atstake.com/research/advisories/2001/a122001-1.txt", "name": "A122001-1", "tags": ["Patch", "Vendor Advisory"], "refsource": "ATSTAKE"}, {"url": "http://www.securityfocus.com/bid/3733", "name": "3733", "tags": ["Patch", "Vendor Advisory"], "refsource": "BID"}, {"url": "http://www.kb.cert.org/vuls/id/700575", "name": "VU#700575", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://marc.info/?l=bugtraq&m=100891252317406&w=2", "name": "20011221 @stake advisory: Multiple overflow and format string vulnerabilities in in Microsoft SQL Server", "tags": [], "refsource": "BUGTRAQ"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A83", "name": "oval:org.mitre.oval:def:83", "tags": [], "refsource": "OVAL"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7724", "name": "mssql-text-message-bo(7724)", "tags": [], "refsource": "XF"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-060", "name": "MS01-060", "tags": [], "refsource": "MS"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Buffer overflows in Microsoft SQL Server 7.0 and 2000 allow attackers with access to SQL Server to execute arbitrary code through the functions (1) raiserror, (2) formatmessage, or (3) xp_sprintf. NOTE: the C runtime format string vulnerability reported in MS01-060 is identified by CVE-2001-0879."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2001-0542", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2001-12-20T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-12T21:30Z"}