CVE-2002-0049

MEDIUM

Microsoft Exchange Server 2000 System Attendant gives "Everyone" group privileges to the WinReg key, which could allow remote attackers to read or modify registry keys.

CVSS v2.0 Score

6.4

/ 10.0

MEDIUM

AV:N/AC:L/Au:N/C:P/I:P/A:N

Information

Published: 8 mars 2002
Updated: 16 avr. 2026
Status: Modified
Source: cve@mitre.org

Affected products

microsoft exchange server

Versions : 2000

Weaknesses (CWE)

CWE-269

References (10)

http://www.osvdb.org/2042
Broken Link
http://www.securityfocus.com/bid/4053
PatchThird Party AdvisoryVDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-003
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/8092
Third Party AdvisoryVDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1022
Third Party Advisory
http://www.osvdb.org/2042
Broken Link
http://www.securityfocus.com/bid/4053
PatchThird Party AdvisoryVDB Entry
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-003
PatchVendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/8092
Third Party AdvisoryVDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1022
Third Party Advisory

Similar CVEs

Other vulnerabilities of type CWE-269

Loading…

Monitor your products

Get automatic alerts for every new CVE affecting your equipment.

Enable monitoring