257 matches found
EUVD-2003-1096
Malware in sbrugna...
EUVD-2002-0441
Malware in sbrugna...
EUVD-2005-3170
Malware in sbrugna...
EUVD-2001-0349
Malware in sbrugna...
EUVD-2006-3439
Malware in sbrugna...
EUVD-2001-0350
Malware in sbrugna...
EUVD-2005-0062
Malware in sbrugna...
EUVD-2008-2248
Malware in sbrugna...
EUVD-2005-3173
Malware in sbrugna...
EUVD-2005-3174
Malware in sbrugna...
CVE-2005-3173
Microsoft Windows 2000 before Update Rollup 1 for SP4 does not apply group policies if the user logs on using UPN credentials with a trailing dot, which prevents Windows 2000 from finding the correct domain controller and could allow the user to bypass intended restrictions...
CVE-2007-6043
The CryptGenRandom function in Microsoft Windows 2000 generates predictable values, which makes it easier for context-dependent attackers to reduce the effectiveness of cryptographic mechanisms, as demonstrated by attacks on 1 forward security and 2 backward security, related to use of eight...
CVE-2005-3171
Microsoft Windows 2000 before Update Rollup 1 for SP4 records Event ID 1704 to indicate that Group Policy security settings were successfully updated, even when the processing fails such as when Ntuser.pol cannot be accessed, which could cause system administrators to believe that the system is...
CVE-2005-3175
Microsoft Windows 2000 before Update Rollup 1 for SP4 allows a local administrator to unlock a computer even if it has been locked by a domain administrator, which allows the local administrator to access the session as the domain administrator...
CVE-2005-3172
The WideCharToMultiByte function in Microsoft Windows 2000 before Update Rollup 1 for SP4 does not properly convert strings with Japanese composite characters in the last character, which could prevent the string from being null terminated and lead to data corruption or enable buffer overflow...
CVE-2005-3169
Microsoft Windows 2000 before Update Rollup 1 for SP4, when the "audit directory service access" policy is enabled, does not record a 565 event message for File Delete Child operations on an Active Directory object in the security event log, which could allow attackers to conduct unauthorized...
CVE-2005-3168
The SECEDIT command on Microsoft Windows 2000 before Update Rollup 1 for SP4, when using a security template to set Access Control Lists ACLs on folders, does not apply ACLs on folders that are listed after a long folder entry, which could result in less secure permissions than specified by the...
CVE-2005-3174
Microsoft Windows 2000 before Update Rollup 1 for SP4 allows users to log on to the domain, even when their password has expired, if the fully qualified domain name FQDN is 8 characters long...
MS02-063 PPTP Malformed Control Data Kernel Denial of Service
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS02-063 PPTP Malformed Control Data Kernel Denial of Service', 'Description' = %q This module exploits a kernel based overflow when sending...
smb-vuln-regsvc-dos NSE Script
Checks if a Microsoft Windows 2000 system is vulnerable to a crash in regsvc caused by a null pointer dereference. This check will crash the service if it is vulnerable and requires a guest account or higher to work. The vulnerability was discovered by Ron Bowes while working on smb-enum-sessions...