CVE-2002-0721 - OpenCVE

Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Data Engine Sql Server

Configuration 1 [-]

OR	cpe:2.3:a:microsoft:data_engine:1.0:::::::*
	cpe:2.3:a:microsoft:data_engine:2000:::::::*
	cpe:2.3:a:microsoft:sql_server:7.0:::::::*
	cpe:2.3:a:microsoft:sql_server:7.0:sp1::::::
	cpe:2.3:a:microsoft:sql_server:7.0:sp2::::::
	cpe:2.3:a:microsoft:sql_server:7.0:sp3::::::
	cpe:2.3:a:microsoft:sql_server:7.0:sp4::::::
	cpe:2.3:a:microsoft:sql_server:2000:::::::*
	cpe:2.3:a:microsoft:sql_server:2000:sp1::::::
	cpe:2.3:a:microsoft:sql_server:2000:sp2::::::

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html
http://marc.info/?l=bugtraq&m=102950473002959&w=2
http://marc.info/?l=ntbugtraq&m=102950792606475&w=2
http://www.kb.cert.org/vuls/id/399531
http://www.kb.cert.org/vuls/id/818939
http://www.kb.cert.org/vuls/id/939675
http://www.ngssoftware.com/advisories/mssql-esppu.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2002-08-20T04:00:00

Updated: 2024-08-08T02:56:38.802Z

Reserved: 2002-07-22T00:00:00

Link: CVE-2002-0721

Vulnrichment

No data.

NVD

Status : Modified

Published: 2002-09-05T04:00:00.000

Modified: 2018-10-12T21:31:45.317

Link: CVE-2002-0721

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-08-15T00:00:00", "descriptions": [{"lang": "en", "value": "Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-12T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "VU#939675", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/939675"}, {"name": "VU#818939", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/818939"}, {"name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=102950792606475&w=2"}, {"name": "MS02-043", "tags": ["vendor-advisory", "x_refsource_MS"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043"}, {"tags": ["x_refsource_MISC"], "url": "http://www.ngssoftware.com/advisories/mssql-esppu.txt"}, {"name": "VU#399531", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/399531"}, {"name": "20020815 Alert: Microsoft Security Bulletin - MS02-043", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html"}, {"name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=102950473002959&w=2"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-0721", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VU#939675", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/939675"}, {"name": "VU#818939", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/818939"}, {"name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=102950792606475&w=2"}, {"name": "MS02-043", "refsource": "MS", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043"}, {"name": "http://www.ngssoftware.com/advisories/mssql-esppu.txt", "refsource": "MISC", "url": "http://www.ngssoftware.com/advisories/mssql-esppu.txt"}, {"name": "VU#399531", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/399531"}, {"name": "20020815 Alert: Microsoft Security Bulletin - MS02-043", "refsource": "NTBUGTRAQ", "url": "http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html"}, {"name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=102950473002959&w=2"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T02:56:38.802Z"}, "title": "CVE Program Container", "references": [{"name": "VU#939675", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/939675"}, {"name": "VU#818939", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/818939"}, {"name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=ntbugtraq&m=102950792606475&w=2"}, {"name": "MS02-043", "tags": ["vendor-advisory", "x_refsource_MS", "x_transferred"], "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.ngssoftware.com/advisories/mssql-esppu.txt"}, {"name": "VU#399531", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/399531"}, {"name": "20020815 Alert: Microsoft Security Bulletin - MS02-043", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html"}, {"name": "20020816 Microsoft SQL Server Extended Stored Procdure privilege upgrade vulnerabilities (#NISR15002002A)", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=102950473002959&w=2"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-0721", "datePublished": "2002-08-20T04:00:00", "dateReserved": "2002-07-22T00:00:00", "dateUpdated": "2024-08-08T02:56:38.802Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:data_engine:1.0:*:*:*:*:*:*:*", "matchCriteriaId": "F455C373-A9F7-47F9-828E-DEE2C8CC6545", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:data_engine:2000:*:*:*:*:*:*:*", "matchCriteriaId": "51ABD323-BF3F-4825-8788-8FCD614E83E4", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "A2AB95D7-394E-423B-884C-87A9960682EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:7.0:sp1:*:*:*:*:*:*", "matchCriteriaId": "4355BA3D-B985-4DC7-AD9D-21B64652CC19", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:7.0:sp2:*:*:*:*:*:*", "matchCriteriaId": "D590A237-1587-4FF2-BEEA-F96B1C08F84C", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:7.0:sp3:*:*:*:*:*:*", "matchCriteriaId": "B004F338-1C8E-4283-8823-1A16A291FCBD", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:7.0:sp4:*:*:*:*:*:*", "matchCriteriaId": "54EB3111-B93A-4577-9592-0D13FE7FD2C4", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*", "matchCriteriaId": "A5D559EE-727C-405C-987C-247973A84D32", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:2000:sp1:*:*:*:*:*:*", "matchCriteriaId": "4A74EBC1-FD61-4DD1-AC8A-E4B0F333A980", "vulnerable": true}, {"criteria": "cpe:2.3:a:microsoft:sql_server:2000:sp2:*:*:*:*:*:*", "matchCriteriaId": "4BC2A389-68BF-45B1-833D-96B331844424", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Microsoft SQL Server 7.0 and 2000 installs with weak permissions for extended stored procedures that are associated with helper functions, which could allow unprivileged users, and possibly remote attackers, to run stored procedures with administrator privileges via (1) xp_execresultset, (2) xp_printstatements, or (3) xp_displayparamstmt."}, {"lang": "es", "value": "Microsoft SQL Server 7.0 y 2000 se instala con permisos d\u00e9biles para ciertos procedimientos almacenados (stored procedures) extendidos que est\u00e1n asociados con funciones de ayuda, lo que podr\u00eda permitir a usuairos sin privilegios, y posiblemente atacantes remotos, ejecutar procedimentos almacenados con privilegios de administrador."}], "id": "CVE-2002-0721", "lastModified": "2018-10-12T21:31:45.317", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-09-05T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://archives.neohapsis.com/archives/ntbugtraq/2002-q3/0087.html"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=102950473002959&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=102950792606475&w=2"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/399531"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/818939"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/939675"}, {"source": "cve@mitre.org", "url": "http://www.ngssoftware.com/advisories/mssql-esppu.txt"}, {"source": "cve@mitre.org", "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-043"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}