Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0006

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0006
Last Modified 10 Sep 2008 03:07:00
Published 12 Feb 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0006

Summary

The Winsock2ProtocolCatalogMutex mutex in Windows NT 4.0 has inappropriate Everyone/Full Control permissions, which allows local users to modify the permissions to "No Access" and disable Winsock network connectivity to cause a denial of service, aka the "Winsock Mutex" vulnerability.

Vulnerable Systems

Operating System

  • Microsoft Windows Nt 4.0


References

MS - MS01-003

BUGTRAQ - 20010126 ntsecurity.nu advisory: Winsock Mutex Vulnerability in Windows NT 4.0 SP6 and below

XF - winnt-mutex-dos(6006)


Last Updated: 27 May 2016 10:36:06