Lucene search

[email protected]NVD:CVE-2001-1571

HistoryDec 31, 2001 - 5:00 a.m.

CVE-2001-1571

2001-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.01

Percentile

84.0%

JSON

The Remote Desktop client in Windows XP sends the most recent user account name in cleartext, which could allow remote attackers to obtain terminal server user account names via sniffing.

Affected configurations

Nvd

Node

microsoftwindows_xphome

microsoftwindows_xpgoldprofessional

VendorProductVersionCPE
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
microsoftwindows_xp*cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows_xp	*	cpe:2.3:o:microsoft:windows_xp:::home:::::*
microsoft	windows_xp	*	cpe:2.3:o:microsoft:windows_xp::gold:professional:::::

References

archives.neohapsis.com/archives/bugtraq/2001-12/0213.html

www.iss.net/security_center/static/7732.php

www.securityfocus.com/bid/3720

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.6

Confidence

Low

EPSS

0.01

Percentile

84.0%

JSON

Related for NVD:CVE-2001-1571

cve1 cvelist1