CVE-2002-1142 | Vulnerability Database | Aqua Security

Heap-based buffer overflow in the Remote Data Services (RDS) component of Microsoft Data Access Components (MDAC) 2.1 through 2.6, and Internet Explorer 5.01 through 6.0, allows remote attackers to execute code via a malformed HTTP request to the Data Stub.

Affected Software

Name	Vendor	Start Version	End Version
Data_access_components	Microsoft	2.1 (including)	2.1 (including)
Data_access_components	Microsoft	2.5 (including)	2.5 (including)
Data_access_components	Microsoft	2.6 (including)	2.6 (including)
Ie	Microsoft	6.0-sp1 (including)	6.0-sp1 (including)
Internet_explorer	Microsoft	5.0.1 (including)	5.0.1 (including)
Internet_explorer	Microsoft	5.0.1-sp1 (including)	5.0.1-sp1 (including)
Internet_explorer	Microsoft	5.0.1-sp2 (including)	5.0.1-sp2 (including)
Internet_explorer	Microsoft	5.5 (including)	5.5 (including)
Internet_explorer	Microsoft	5.5-sp1 (including)	5.5-sp1 (including)
Internet_explorer	Microsoft	5.5-sp2 (including)	5.5-sp2 (including)
Internet_explorer	Microsoft	6.0 (including)	6.0 (including)

References

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0082.html
http://www.cert.org/advisories/CA-2002-33.html
http://www.foundstone.com/knowledge/randd-advisories-display.html?id=337
http://www.kb.cert.org/vuls/id/542081
http://www.securityfocus.com/bid/6214
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-065
https://exchange.xforce.ibmcloud.com/vulnerabilities/10659
https://exchange.xforce.ibmcloud.com/vulnerabilities/10669
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2730
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A294
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3573

NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1142
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html