Lucene search
+L

24 matches found

openvas
openvas
added 2005/11/03 12:0 a.m.33 views

w3who.dll overflow and XSS

The Windows 2000 Resource Kit ships with a DLL that displays the browser client context. It lists security identifiers, privileges and $ENV variables. OpenVAS has determined that this file is installed on the remote host. The w3who.dll ISAPI may allow an attacker to execute arbitrary commands on...

10CVSS1AI score0.72326EPSS
Exploits5References1
cvelist
cvelist
added 2005/01/19 5:0 a.m.45 views

CVE-2005-0065

The original design of TCP does not check that the TCP sequence number in an ICMP error message is within the range of sequence numbers for data that has been sent but not acknowledged aka "TCP sequence number checking", which makes it easier for attackers to forge ICMP error messages for specifi...

6.3AI score0.01937EPSS
Exploits0References2
nessus
nessus
added 2003/03/12 12:0 a.m.26 views

MS02-001: Trusted Domain SID Remote Privilege Escalation (311401)

Trust relationships are created between Windows NT or Windows 2000 domains to allow users in one domain to access resources in other domains without requiring them to authenticate separately to each domain. When a user in a trusted domain requests access to a resource in a trusting domain, the...

10CVSS5.6AI score0.1796EPSS
Exploits0References2
securityvulns
securityvulns
added 2002/01/31 12:0 a.m.94 views

Security Bulletin MS02-001

Title: Trusting Domains Do Not Verify Domain Membership of SIDs in Authorization Data Date: 30 January 2002 Software: Windows NT 4.0, Windows 2000 Impact: Privilege Elevation Max Risk: Moderate Bulletin: MS02-001 Microsoft encourages customers to review the Security Bulletin at:...

0.1AI score
Exploits0
Rows per page
Query Builder