Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2011/09/15 12:0 a.m.1383 views

SMB Use Host SID to Enumerate Local Users Without Credentials

Using the host security identifier SID, Nessus was able to enumerate local users on the remote Windows system, without credentials. C Tenable Network Security, Inc. @PREFERENCES@ include'compat.inc'; if description scriptid56211; scriptversion"1.12";...

5CVSS5.5AI score0.481EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2011/09/15 12:0 a.m.1507 views

Microsoft Windows SMB LsaQueryInformationPolicy Function SID Enumeration Without Credentials

By emulating the call to LsaQueryInformationPolicy, it was possible to obtain the host SID Security Identifier, without credentials. The host SID can then be used to get the list of local users. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid56210; scriptversion"1.5"...

5CVSS5.4AI score0.481EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2006/01/02 12:0 a.m.37 views

Microsoft Windows NT Null CIFS Sessions (CVE-2000-1200)

...

5CVSS6.4AI score0.481EPSS
Exploits1
CVE
CVE
added 2002/03/09 5:0 a.m.524 views

CVE-2000-1200

CVE-2000-1200 affects Windows NT where remote attackers can enumerate domain users by obtaining the domain SID with the LsaQueryInformationPolicy policy function through a null session, then using that SID to list users. Connected findings consolidate that attackers can enumerate the host/local u...

5CVSS6.6AI score0.481EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2001/08/31 4:0 a.m.29 views

CVE-2000-1200

Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy function via a null session and using the SID to list the users...

5CVSS6.6AI score0.481EPSS
Exploits1References3
Rows per page
Query Builder