CVE-2002-0186: CVE-2002-0186

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-0186

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Buffer overflow in the SQLXML ISAPI extension of Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code via data queries with a long content-type parameter, aka "Unchecked Buffer in SQLXML ISAPI Extension."

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsoft SQLXML ISAPI远程缓冲区溢出漏洞(MS02-030)

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

SQLXML ISAPI可以使IIS服务器能够从SQL服务器接受或向其输出XML数据，从而以XML的格式返回查询请求。 SQLXML ISAPI实现上存在缓冲区溢出漏洞，远程攻击者可能通过溢出攻击在主机上以SYSTEM权限执行任意指令。当使用SQLXML的"sql="语法进行SQL查询的时候，用户可以指定某些参数来影响返回的XML输出，其中的一个参数为content-type。如果提交一个超长的content-type值给IIS，服务器程序可能会崩溃，精心构造成提交的数据可能导致远程攻击者在主机上以SY

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-0186

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-0186

Please Login to view more intelligence information

http://www.securityfocus.com/bid/5004vdb-entryx_refsource_BID
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-030vendor-advisoryx_refsource_MS
http://www.kb.cert.org/vuls/id/811371third-party-advisoryx_refsource_CERT-VN
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A489vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A484vdb-entrysignaturex_refsource_OVAL
http://www.iss.net/security_center/static/9328.phpvdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=102397345410856&w=2mailing-listx_refsource_BUGTRAQ
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0100.htmlmailing-listx_refsource_VULNWATCH
https://nvd.nist.gov/vuln/detail/CVE-2002-0186

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2002-0186

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2002-0186

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-0186

III. Intelligence Information for CVE-2002-0186

IV. Related Vulnerabilities

V. Comments for CVE-2002-0186

Leave a comment