CVE-2002-1142

Published: Nov 29, 2002Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Heap-based buffer overflow in the Remote Data Services (RDS) component of Microsoft Data Access Components (MDAC) 2.1 through 2.6, and Internet Explorer 5.01 through 6.0, allows remote attackers to execute code via a malformed HTTP request to the Data Stub.

Affected (11)

Products: Microsoft: Data Access Components, Ie, Internet Explorer

3 products

Data Access Components

Internet Explorer

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Microsoft Data Access Components	Version 2.1
Microsoft Data Access Components	Version 2.5
Microsoft Data Access Components	Version 2.6
Microsoft Ie	Version 6.0 sp1
Microsoft Internet Explorer	Version 5.0.1
Microsoft Internet Explorer	Version 5.0.1 sp1
Microsoft Internet Explorer	Version 5.0.1 sp2
Microsoft Internet Explorer	Version 5.5
Microsoft Internet Explorer	Version 5.5 sp1
Microsoft Internet Explorer	Version 5.5 sp2
Microsoft Internet Explorer	Version 6.0

References (22)

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0082.html

Source: cve@mitre.org

http://www.cert.org/advisories/CA-2002-33.html

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.foundstone.com/knowledge/randd-advisories-display.html?id=337

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/542081

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/6214

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-065

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/10659

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/10669

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2730

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A294

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3573

Source: cve@mitre.org

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0082.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cert.org/advisories/CA-2002-33.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.foundstone.com/knowledge/randd-advisories-display.html?id=337

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/542081

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.securityfocus.com/bid/6214

Source: af854a3a-2127-422b-91ae-364da2661108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-065

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/10659

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/10669

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2730

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A294

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3573

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.