Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1142

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-1142
Last Modified 10 Sep 2008 03:13:57
Published 29 Nov 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-1142

Summary

Heap-based buffer overflow in the Remote Data Services (RDS) component of Microsoft Data Access Components (MDAC) 2.1 through 2.6, and Internet Explorer 5.01 through 6.0, allows remote attackers to execute code via a malformed HTTP request to the Data Stub.

Vulnerable Systems

Application

  • Microsoft Data Access Components 2.1

  • Microsoft Data Access Components 2.5

  • Microsoft Data Access Components 2.6

  • Microsoft Ie 5.0.1

  • Microsoft Ie 5.5

  • Microsoft Ie 6.0


References

CERT - CA-2002-33

CERT-VN - VU#542081

MS - MS02-065

XF - mdac-rds-server-bo(10659)

MISC - http://www.foundstone.com/knowledge/randd-advisories-display.html?id=337

XF - mdac-rds-client-bo(10669)

BID - 6214

VULNWATCH - 20021120 Foundstone Advisory


Last Updated: 27 May 2016 10:37:12