CVE-2002-0623
Summary
| CVE | CVE-2002-0623 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2002-07-03 04:00:00 UTC |
| Updated | 2018-10-12 21:31:00 UTC |
| Description | Buffer overflow in AuthFilter ISAPI filter on Microsoft Commerce Server 2000 and 2002 allows remote attackers to execute arbitrary code via long authentication data, aka "New Variant of the ISAPI Filter Buffer Overrun". |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Microsoft | Commerce Server | 2000 | All | All | All |
| Application | Microsoft | Commerce Server | 2000 | sp1 | All | All |
| Application | Microsoft | Commerce Server | 2000 | sp2 | All | All |
| Application | Microsoft | Commerce Server | 2002 | All | All | All |
| Application | Microsoft | Commerce Server | 2000 | All | All | All |
| Application | Microsoft | Commerce Server | 2000 | sp1 | All | All |
| Application | Microsoft | Commerce Server | 2000 | sp2 | All | All |
| Application | Microsoft | Commerce Server | 2002 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| ISS X-Force Database: mscs-authfilter-isapi-bo-variant (9426): Microsoft Commerce Server new variant of AuthFilter ISAPI filter buffer overflow | XF | www.iss.net | |
| 5163 | OSVDB | www.osvdb.org | |
| Microsoft Security Bulletin MS02-033 - Critical | Microsoft Docs | MS | docs.microsoft.com | |
| Microsoft Commerce Server ISAPI Buffer Overflow Variation Vulnerability | BID | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.