CVE Vulnerabilities

CVE-2003-0230

Published: Aug 27, 2003 | Modified: Oct 12, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Microsoft SQL Server 7, 2000, and MSDE allows local users to gain privileges by hijacking a named pipe during the authentication of another user, aka the Named Pipe Hijacking vulnerability.

Affected Software

Name Vendor Start Version End Version
Data_engine Microsoft 1.0 1.0
Sql_server Microsoft 7.0 7.0
Sql_server Microsoft 7.0 7.0
Sql_server Microsoft 7.0 7.0
Sql_server Microsoft 7.0 7.0
Sql_server Microsoft 7.0 7.0
Sql_server Microsoft 2000 2000
Sql_server Microsoft 2000 2000
Sql_server Microsoft 2000 2000
Sql_server Microsoft 2000 2000
Sql_server Microsoft 2000 2000
Sql_server Microsoft 2000 2000

References