CVE-2006-2380
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.4 Medium
EPSS
Percentile
97.3%
Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication over SSL, which allows remote attackers to spoof an RPC server, aka the “RPC Mutual Authentication Vulnerability.”
| CPE | Name | Operator | Version |
|---|---|---|---|
| microsoft:windows_2000 | microsoft windows 2000 | eq | * |
References
secunia.com/advisories/20637
securitytracker.com/id?1016289
www.osvdb.org/26438
www.securityfocus.com/bid/18389
www.vupen.com/english/advisories/2006/2328
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-031
exchange.xforce.ibmcloud.com/vulnerabilities/26836
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1763
Related
7 High
AI Score
Confidence
Low
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.4 Medium
EPSS
Percentile
97.3%