CVE-2002-0187

Microsoft SQL Server 2000 - Cross-Site Scripting via XML SQL Query Root Parameter

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0187. PoCs published by Matt Moore.

AI-analyzed exploit summary This exploit demonstrates a cross-site scripting (XSS) vulnerability in SQLXML HTTP components of SQL Server 2000. It injects arbitrary script code via XML tags, which executes in the context of the Internet Explorer Security Zone associated with the IIS server.

Description

Cross-site scripting vulnerability in the SQLXML component of Microsoft SQL Server 2000 allows an attacker to execute arbitrary script via the root parameter as part of an XML SQL query, aka "Script Injection via XML Tag."

Exploits (1)

exploitdb WORKING POC VERIFIED
by Matt Moore · textremotewindows
https://www.exploit-db.com/exploits/21541

This exploit demonstrates a cross-site scripting (XSS) vulnerability in SQLXML HTTP components of SQL Server 2000. It injects arbitrary script code via XML tags, which executes in the context of the Internet Explorer Security Zone associated with the IIS server.

Classification
Working Poc 90%
Attack Type
Xss
Complexity
Moderate
Reliability
Reliable
Target: Microsoft SQL Server 2000 with SQLXML HTTP components
Auth required
Prerequisites: Access to an IIS server running vulnerable SQLXML HTTP components · Sufficient privileges to pass queries to the underlying SQL server · Knowledge of the virtual directory set up on the IIS server for SQLXML HTTP components
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Patch, Vendor Advisory mailing-list x_refsource_vulnwatch
http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0100.html
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=102397345410856&w=2

Scores

EPSS 0.1389
EPSS Percentile 96.1%

Details

Status published
Products (1)
microsoft/sql_server 2000 (3 CPE variants)
Published Jul 03, 2002
Tracked Since Feb 18, 2026