Unrated severityNVD Advisory· Published Jul 23, 2002· Updated Apr 16, 2026

CVE-2002-0642

Description

The registry key containing the SQL Server service account information in Microsoft SQL Server 2000, including Microsoft SQL Server Desktop Engine (MSDE) 2000, has insecure permissions, which allows local users to gain privileges, aka "Incorrect Permission on SQL Server Service Account Registry Key."

Affected products

Microsoft/Msde
cpe:2.3:a:microsoft:msde:2000:*:*:*:*:*:*:*
Microsoft/SQL Server
cpe:2.3:a:microsoft:sql_server:2000:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cert.org/advisories/CA-2002-22.htmlnvdUS Government Resource
www.kb.cert.org/vuls/id/796313nvdUS Government Resource
www.iss.net/security_center/static/9523.phpnvd
www.securityfocus.com/bid/5205nvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-034nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1025nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.046
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000