← Back

CVE-2003-0230

nvd nist
Published: Aug 27, 2003Modified: Apr 16, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

Microsoft SQL Server 7, 2000, and MSDE allows local users to gain privileges by hijacking a named pipe during the authentication of another user, aka the "Named Pipe Hijacking" vulnerability.

Affected (12)

Microsoft
2 products
Data Engine
Sql Server
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Data Engine
Version 1.0
Microsoft
Sql Server
Version 2000
Sql Server
Version 2000
Sql Server
Version 2000 sp1
Sql Server
Version 2000 sp2
Sql Server
Version 2000 sp3
Sql Server
Version 2000 sp3a
Sql Server
Version 7.0
Sql Server
Version 7.0 sp1
Sql Server
Version 7.0 sp2
Sql Server
Version 7.0 sp3
Sql Server
Version 7.0 sp4

Related CWEs

CWE-264
CWE-264

References (6)

Source: cve@mitre.org
US Government Resource
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
US Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.