CVE-2002-0624 Information

Description

Buffer overflow in the password encryption function of Microsoft SQL Server 2000 including Microsoft SQL Server Desktop Engine (MSDE) 2000 allows remote attackers to gain control of the database and execute arbitrary code via SQL Server Authentication aka \Unchecked Buffer in Password Encryption Procedure.\

Reference

http://www.cert.org/advisories/CA-2002-22.html https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A291