CVE-2002-1123

CVE Database · CVE-2002-1123

CVE-2002-1123

· N/AModified

CVSS v3.1

N/A

EPSS

77.71%

Published

Sep 24, 2002

Modified

Apr 15, 2026

Public PoC / Exploit (3)

All weaponized →

Exploit-DBMicrosoft SQL Server - Hello Overflow (MS02-056) (Metasploit)Exploit-DBMicrosoft SQL Server 2000 - User Authentication Remote Buffer Overflow TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the authentication function for Microsoft SQL Server 2000 and Microsoft Desktop Engine (MSDE) 2000 allows remote attackers to execute arbitrary code via a long request to TCP port 1433, aka the "Hello" overflow.

Affected Products (4)

microsoft · data_enginevulnerable

microsoft · sql_servervulnerable

References (12)

http://marc.info/?l=bugtraq&m=102873609025020&w=2

http://online.securityfocus.com/archive/1/286220

http://www.ciac.org/ciac/bulletins/n-003.shtml

http://www.iss.net/security_center/static/9788.php

Vendor Advisory

http://www.securityfocus.com/bid/5411

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-056

http://marc.info/?l=bugtraq&m=102873609025020&w=2

http://online.securityfocus.com/archive/1/286220

http://www.ciac.org/ciac/bulletins/n-003.shtml

http://www.iss.net/security_center/static/9788.php

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs