CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2003-0230

Microsoft SQL Server 7, 2000, and MSDE allows local users to gain privileges by hijacking a named pipe during the authentication of another user, aka the "Named Pipe Hijacking" vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.014

EPSS Ranking 79.4%

CVSS Severity

CVSS v2 Score 7.2

References

http://www.kb.cert.org/vuls/id/556356
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-031
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A235
http://www.kb.cert.org/vuls/id/556356
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-031
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A235

Products affected by CVE-2003-0230

Microsoft » Data Engine » Version: 1.0

cpe:2.3:a:microsoft:data_engine:1.0
Microsoft » Sql Server » Version: 2000

cpe:2.3:a:microsoft:sql_server:2000
Microsoft » Sql Server » Version: 7.0

cpe:2.3:a:microsoft:sql_server:7.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2003-0230

Products

Pricing

Contact Us