Russian Vulnerability Scanner Database

Back to List

CVE-2002-0642

Scores

EPSS

0.751medium75.1%
0%20%40%60%80%100%

Percentile: 75.1%

CVSS

7.2high2.0
0246810

CVSS Score: 7.2/10

All CVSS Scores

CVSS 2.0
7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Description

The registry key containing the SQL Server service account information in Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, has insecure permissions, which allows local users to gain privileges, aka “Incorrect Permission on SQL Server Service Account Registry Key.”

Scaner-VS 7 — a modern vulnerability management solution

Uses this database for vulnerability detection. High-speed search, cross-platform, advanced configuration audit, and flexible filtering. Suitable for organizations of any size.
Learn more about Scaner-VS 7

Sources

nvd

Vulnerable Software (2)

Type: Configuration

Vendor: microsoft

Product: msde

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:microsoft:msde:2000:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*", ...

Source: nvd

Type: Configuration

Vendor: microsoft

Product: sql_server

Operating System: * * *

Trait: 
{  "cpe_match": [    {      "cpe23uri": "cpe:2.3:a:microsoft:msde:2000:*:*:*:*:*:*:*",      "vulnerable": true    },    {      "cpe23uri": "cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*", ...

Source: nvd