CVE-2002-0642
First published: Tue Jul 23 2002(Updated: )
The registry key containing the SQL Server service account information in Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, has insecure permissions, which allows local users to gain privileges, aka "Incorrect Permission on SQL Server Service Account Registry Key."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft SQL Server | =2000 | |
| Microsoft Msde | =2000 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cert.org/advisories/CA-2002-22.html
- http://www.kb.cert.org/vuls/id/796313
- http://www.iss.net/security_center/static/9523.php
- http://www.securityfocus.com/bid/5205
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1025
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034
- collector/nvd-historical
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/type
- agent/description
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft sql server
- version/microsoft sql server/2000
- canonical/microsoft msde
- version/microsoft msde/2000