PT-2002-1668 · Microsoft · Commerce Server 2000

Published

2002-07-01

Updated

2018-10-12

CVE-2002-0620

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Microsoft Commerce Server 2000

Description A buffer overflow issue exists in the Profile Service, allowing remote attackers to cause server failure or execute arbitrary code in the LocalSystem security context. This is achieved by exploiting an input field using an affected API.

Recommendations For Microsoft Commerce Server 2000, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0620

Affected Products

Commerce Server 2000

PT-2002-1668 · Microsoft · Commerce Server 2000

CVE-2002-0620

Related Identifiers

Affected Products

References · 4