199 matches found
Microsoft Terminal Server Client Buffer Overrun (A082802-1)
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 @stake, Inc. www.atstake.com Security Advisory Advisory Name: Microsoft Terminal Server Client Buffer Overrun Release Date: 08/28/2002 Application: Microsoft Terminal Server ActiveX Client v5.02221.1 Platform: Windows 95/98/NT 4.0/2000/XP Severity:...
Crashing any Windows NT TSE running MetaFrame 1.8
PreScriptum: I posted this at thin-world.community.everyone.net first. -------------------------------------------------------------------------------- I tried to contact Citrix about this bug i found, but they warn't interested. Haven't heared from them. So i'm posting it on a public forum for...
CVE-2002-0444
Microsoft Windows 2000 running the Terminal Server 90-day trial version, and possibly other versions, does not apply group policies to incoming users when the number of connections to the SYSVOL share exceeds the maximum, e.g. with a maximum number of licenses, which can allow remote authenticate...
CVE-2001-0663
Terminal Server in Windows NT and Windows 2000 allows remote attackers to cause a denial of service via a sequence of invalid Remote Desktop Protocol RDP packets...
Citrix Client Access Verification
Your professional opinions are appreciated. About a month ago I had posted the below as a Citrix Client Access Advisory and got several responses to the fact that it either it was not a valid vulnerabilty or that it was a default configuration problem. which may be true. but consider this. The...
CVE-1999-1257
Xyplex terminal server 6.0.1S1, and possibly other versions, allows remote attackers to bypass the password prompt by entering 1 a CTRL-Z character, or 2 a ? question mark...
CVE-1999-1257
Xyplex terminal server 6.0.1S1 (and possibly other versions) is affected by an authentication bypass vulnerability. Remote attackers can bypass the password prompt by entering either a CTRL-Z character or a question mark (?), as described in CVE-1999-1257. The available documents confirm the affe...
CVE-2000-1149
Buffer overflow in RegAPI.DLL used by Windows NT 4.0 Terminal Server allows remote attackers to execute arbitrary commands via a long username, aka the "Terminal Server Login Buffer Overflow" vulnerability...
CVE-2000-1149
The CVE-2000-1149 issue affects Microsoft Windows NT 4.0 Terminal Server, where a buffer overflow in RegAPI.DLL allows remote code execution via a specially crafted username. The vulnerability can be exploited by anyone with access to port 3389/TCP and could grant the attacker the privileges of a...
CVE-2000-1149
Buffer overflow in RegAPI.DLL used by Windows NT 4.0 Terminal Server allows remote attackers to execute arbitrary commands via a long username, aka the "Terminal Server Login Buffer Overflow" vulnerability...
Windows NT 4.0 Terminal Server RegAPI.DLL Buffer Overflow
CORE SDI http://www.core-sdi.com Vulnerability Report For Microsoft Windows NT 4.0 Terminal Server GINA Date Published: 2000-11-08 Advisory ID: CORE-20001108 Bugtraq ID: 1924 CVE CAN: Non currently assigned. Title: Windows NT 4.0 Terminal Server RegAPI.DLL Buffer Overflow Class: Boundary Error...
Security Bulletin (MS00-087)
Microsoft Security Bulletin MS00-087 - -------------------------------------- Patch Available for "Terminal Server Login Buffer Overflow" Vulnerability Originally posted: November 08, 2000 Summary ======= Microsoft has released a patch that eliminates a security vulnerability in Microsoftr Window...
CVE-2000-0089
The rdisk utility in Microsoft Terminal Server Edition and Windows NT 4.0 stores registry hive information in a temporary file with permissions that allow local users to read it, aka the "RDISK Registry Enumeration File" vulnerability...
CVE-2000-0089
Technical details about CVE-2000-0089 are not publicly available in the provided connected documents. Monitor for updates from official sources; current documents reiterate the legacy vulnerability description without additional specifics.
CVE-1999-0680
Technical details (affected products/versions, root cause, exploit info) are not publicly provided in the connected documents. Monitor for updates.
nt4+sp4.profile.quota.dos.txt
Date: Fri, 21 May 1999 01:15:11 +0200 From: Tonino Lucca To: [email protected] Subject: Ordinary user can easily surpass profiles quota in NT+SP4 Hi all, File system full in %systemdrive% in Terminal Server can easily be reached by an ordinary user by growing his own profile so...
nt4+sp4.wts.4.0.txt
Date: Wed, 9 Jun 1999 01:07:04 +0200 From: mRm3n4c3 To: [email protected] Subject: Bug in WTS 4.0 on WinNT 4.0 sp4 I have recently encountered what i believe to be a bug in NT security when using Windows Terminal Server 4.0 on NT 4.00.1381 Service Pack 4. The problem occured in an environment...
CVE-1999-0680
Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service...
CVE-1999-1257
Xyplex terminal server 6.0.1S1, and possibly other versions, allows remote attackers to bypass the password prompt by entering 1 a CTRL-Z character, or 2 a ? question mark...