CVE-2002-0697

Published Aug 12, 2002

Last updated 6 years ago

Overview

Description: Microsoft Metadirectory Services (MMS) 2.2 allows remote attackers to bypass authentication and modify sensitive data by using an LDAP client to directly connect to MMS and bypass the checks for MMS credentials.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:microsoft:metadirectory_services:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "894495FD-6B65-4FC1-A4EF-1F695452352C"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References