CVE-2002-0642

CVE Database · CVE-2002-0642

CVE-2002-0642

· N/AModified

CVSS v3.1

N/A

EPSS

49.70%

Published

Jul 23, 2002

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The registry key containing the SQL Server service account information in Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, has insecure permissions, which allows local users to gain privileges, aka "Incorrect Permission on SQL Server Service Account Registry Key."

Affected Products (2)

microsoft · msdevulnerable

microsoft · sql_servervulnerable

References (12)

http://www.cert.org/advisories/CA-2002-22.html

US Government Resource

http://www.iss.net/security_center/static/9523.php

http://www.kb.cert.org/vuls/id/796313

US Government Resource

http://www.securityfocus.com/bid/5205

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1025

http://www.cert.org/advisories/CA-2002-22.html

US Government Resource

http://www.iss.net/security_center/static/9523.php

http://www.kb.cert.org/vuls/id/796313

KEV Catalog EPSS Scores Vendors All CVEs