Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-2250

Description

Multiple buffer overflows in Sybase Adaptive Server 12.0 and 12.5 allow remote attackers to execute arbitrary code via (1) a long parameter to the xp_freedll extended stored procedure or (2) a long database name argument to the DBCC CHECKVERIFY function.

Affected products

Sybase/Adaptive Server2 versions
cpe:2.3:a:sybase:adaptive_server:12.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:sybase:adaptive_server:12.0:*:*:*:*:*:*:*
- cpe:2.3:a:sybase:adaptive_server:12.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00364.htmlnvdExploitPatch
archives.neohapsis.com/archives/ntbugtraq/2002-q4/0080.htmlnvd
archives.neohapsis.com/archives/ntbugtraq/2002-q4/0082.htmlnvd
cert.uni-stuttgart.de/archive/bugtraq/2002/11/msg00361.htmlnvd
www.appsecinc.com/resources/alerts/sybase/02-0001.htmlnvd
www.appsecinc.com/resources/alerts/sybase/02-0003.htmlnvd
www.iss.net/security_center/static/10719.phpnvd
www.securityfocus.com/bid/6266nvd
www.securityfocus.com/bid/6269nvd
exchange.xforce.ibmcloud.com/vulnerabilities/10721nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.013
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000