CVE-2002-0186

Microsoft SQL Server 2000 - Buffer Overflow via Long Content-Type Parameter in SQLXML ISAPI Extension

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0186. PoCs published by Matt Moore.

AI-analyzed exploit summary The provided text describes a buffer overflow vulnerability in the SQLXML ISAPI extension of SQL Server 2000, which can be triggered via a malformed HTTP request. The issue allows an attacker to crash inetinfo.exe by submitting excessive data in the 'contenttype' parameter.

Description

Buffer overflow in the SQLXML ISAPI extension of Microsoft SQL Server 2000 allows remote attackers to execute arbitrary code via data queries with a long content-type parameter, aka "Unchecked Buffer in SQLXML ISAPI Extension."

Exploits (1)

exploitdb WRITEUP VERIFIED

by Matt Moore · textdoswindows

https://www.exploit-db.com/exploits/21540

View Code ZIP pw:eip

The provided text describes a buffer overflow vulnerability in the SQLXML ISAPI extension of SQL Server 2000, which can be triggered via a malformed HTTP request. The issue allows an attacker to crash inetinfo.exe by submitting excessive data in the 'contenttype' parameter.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Theoretical

Target: Microsoft SQL Server 2000 Gold (SQLXML ISAPI extension)

No auth needed

Prerequisites: SQLXML ISAPI extension enabled on IIS · Access to the target web server

MITRE ATT&CK