Lucene search

[email protected]CVE-2000-0885

HistoryDec 19, 2000 - 5:00 a.m.

CVE-2000-0885

2000-12-1905:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0885

microsoft

network monitor

remote execution

buffer overflow

cifs

smb

snmp

netmon protocol parsing.

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.436 Medium

EPSS

Percentile

97.3%

JSON

Buffer overflows in Microsoft Network Monitor (Netmon) allow remote attackers to execute arbitrary commands via a long Browser Name in a CIFS Browse Frame, a long SNMP community name, or a long username or filename in an SMB session, aka the “Netmon Protocol Parsing” vulnerability. NOTE: It is highly likely that this candidate will be split into multiple candidates.

CPENameOperatorVersion
microsoft:systems_management_servermicrosoft systems management servereq2.0
microsoft:systems_management_servermicrosoft systems management servereq1.2
microsoft:windows_ntmicrosoft windows nteq4.0
microsoft:windows_2000microsoft windows 2000eq*

CPE	Name	Operator	Version
microsoft:systems_management_server	microsoft systems management server	eq	2.0
microsoft:systems_management_server	microsoft systems management server	eq	1.2
microsoft:windows_nt	microsoft windows nt	eq	4.0
microsoft:windows_2000	microsoft windows 2000	eq	*

References

docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-083

exchange.xforce.ibmcloud.com/vulnerabilities/5399

7.8 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.436 Medium

EPSS

Percentile

97.3%

JSON

Related for CVE-2000-0885

securityvulns1