Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0331


Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0331
Last Modified 10 Sep 2008 03:04:09
Published 20 Apr 2000 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Nt 4.0


  • Microsoft Terminal Server


BID - 1135

MS - MS00-027

BUGTRAQ - 20000421 CMD.EXE overflow (CISADV000420)

Last Updated: 27 May 2016 10:35:40