Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0187

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0187
Last Modified 10 Sep 2008 03:11:31
Published 03 Jul 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0187

Summary

Cross-site scripting vulnerability in the SQLXML component of Microsoft SQL Server 2000 allows an attacker to execute arbitrary script via the root parameter as part of an XML SQL query, aka "Script Injection via XML Tag."

Vulnerable Systems

Application

  • Microsoft Sql Server 2000


References

MS - MS02-030

VULNWATCH - 20020613 [VulnWatch] wp-02-0007: Microsoft SQLXML ISAPI Overflow and Cross Site Scripting

BUGTRAQ - 20020613 wp-02-0007: Microsoft SQLXML ISAPI Overflow and Cross Site Scripting


Last Updated: 27 May 2016 10:36:49