CyberSec.Space Logo
Back to CVE Browser

CVE-2003-0030

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0500%
EPSS Percentile12.24th
PublishedMar 18, 2003
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflows in protegrity.dll of Protegrity Secure.Data Extension Feature (SEF) before 2.2.3.9 allow attackers with SQL access to execute arbitrary code via the extended stored procedures (1) xp_pty_checkusers, (2) xp_pty_insert, or (3) xp_pty_select.

Affected Platforms (CPE)

πŸ“¦
Protegrity

Secure.data

= 2.2.3.7
πŸ“¦
Protegrity

Secure.data

= 2.2.3.8

References & Advisories

πŸ”— http://marc.info/?l=bugtraq&m=104758650516677&w=2
πŸ”— http://secunia.com/advisories/8294
πŸ”— http://www.kb.cert.org/vuls/id/247545
πŸ”— http://www.securityfocus.com/bid/7083
πŸ”— http://www.securityfocus.com/bid/7084
πŸ”— http://www.securityfocus.com/bid/7085
πŸ”— http://marc.info/?l=bugtraq&m=104758650516677&w=2
πŸ”— http://secunia.com/advisories/8294

Related Vulnerabilities

CVE-2021-4127710.0

Metabase is an open source data analytics platform. In affected versions a security issue has been discovered with the custom GeoJ...

CVE-2021-3770510.0

OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuzz 2.12.0 or greater, an incomplete author...

CVE-2018-556010.0

A reliance on a static, hard-coded credential in the design of the cloud-based storage system of Practecol's Guardzilla All-In-One...

CVE-2000-120910.0

The "sa" account is installed with a default null password on (1) Microsoft SQL Server 2000, (2) SQL Server 7.0, and (3) Data Engi...