CVE-2002-0721

Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.ngssoftware.com/advisories/mssql-esppu.txt
http://www.kb.cert.org/vuls/id/399531	US Government Resource
http://www.kb.cert.org/vuls/id/818939	US Government Resource
http://www.kb.cert.org/vuls/id/939675	US Government Resource
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html
http://marc.info/?l=ntbugtraq&m=102950792606475&w=2
http://marc.info/?l=bugtraq&m=102950473002959&w=2
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:sql_server:2000:::::::*
	cpe:2.3:a:microsoft:sql_server:2000:sp1::::::
	cpe:2.3:a:microsoft:data_engine:1.0:::::::*
	cpe:2.3:a:microsoft:data_engine:2000:::::::*
	cpe:2.3:a:microsoft:sql_server:7.0:sp3::::::
	cpe:2.3:a:microsoft:sql_server:7.0:sp4::::::
	cpe:2.3:a:microsoft:sql_server:7.0:sp1::::::
	cpe:2.3:a:microsoft:sql_server:7.0:sp2::::::
	cpe:2.3:a:microsoft:sql_server:2000:sp2::::::
	cpe:2.3:a:microsoft:sql_server:7.0:::::::*

Information

Published : 2002-09-04 21:00

Updated : 2018-10-12 14:31

NVD link : CVE-2002-0721

Mitre link : CVE-2002-0721

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

microsoft

sql_server
data_engine

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.ngssoftware.com/advisories/mssql-esppu.txt", "name": "http://www.ngssoftware.com/advisories/mssql-esppu.txt", "tags": [], "refsource": "MISC"}, {"url": "http://www.kb.cert.org/vuls/id/399531", "name": "VU#399531", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://www.kb.cert.org/vuls/id/818939", "name": "VU#818939", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://www.kb.cert.org/vuls/id/939675", "name": "VU#939675", "tags": ["US Government Resource"], "refsource": "CERT-VN"}, {"url": "http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html", "name": "20020815 Alert: Microsoft Security Bulletin - MS02-043", "tags": [], "refsource": "NTBUGTRAQ"}, {"url": "http://marc.info/?l=ntbugtraq&m=102950792606475&w=2", "name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "tags": [], "refsource": "NTBUGTRAQ"}, {"url": "http://marc.info/?l=bugtraq&m=102950473002959&w=2", "name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "tags": [], "refsource": "BUGTRAQ"}, {"url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043", "name": "MS02-043", "tags": [], "refsource": "MS"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2002-0721", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2002-09-05T04:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:2000:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:data_engine:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:data_engine:2000:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:7.0:sp3:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:7.0:sp4:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:7.0:sp1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:7.0:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:2000:sp2:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:microsoft:sql_server:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-12T21:31Z"}