4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
6.8 Medium
AI Score
Confidence
Low
0.4 Medium
EPSS
Percentile
97.3%
Microsoft Windows 2000 SP4 does not properly validate an RPC server during mutual authentication over SSL, which allows remote attackers to spoof an RPC server, aka the “RPC Mutual Authentication Vulnerability.”
secunia.com/advisories/20637
securitytracker.com/id?1016289
www.osvdb.org/26438
www.securityfocus.com/bid/18389
www.vupen.com/english/advisories/2006/2328
docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-031
exchange.xforce.ibmcloud.com/vulnerabilities/26836
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1763