Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0347

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-0347
Last Modified 05 Sep 2008 04:23:53
Published 21 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0347

Summary

Information disclosure vulnerability in Microsoft Windows 2000 telnet service allows remote attackers to determine the existence of user accounts such as Guest, or log in to the server without specifying the domain name, via a malformed userid.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

MS - MS01-031

XF - win2k-telnet-domain-authentication(6665)

BID - 2847

OSVDB - 5686

CIAC - L-092


Last Updated: 27 May 2016 10:36:14