Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0834

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-0834
Last Modified 05 Sep 2008 04:21:59
Published 14 Nov 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0834

Summary

The Windows 2000 telnet client attempts to perform NTLM authentication by default, which allows remote attackers to capture and replay the NTLM challenge/response via a telnet:// URL that points to the malicious server, aka the "Windows 2000 Telnet Client NTLM Authentication" vulnerability.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

BID - 1683

MS - MS00-067

XF - win2k-telnet-ntlm-authentication

ATSTAKE - A091400-1


Last Updated: 27 May 2016 10:35:53