Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0350


Vulnerability Score 4.6 4.6
CVE Id CVE-2001-0350
Last Modified 05 Sep 2008 04:23:53
Published 21 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them, which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it, the second of two variants of this vulnerability.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


MS - MS01-031

XF - win2k-telnet-pipe-privileges(6664)

Last Updated: 27 May 2016 10:36:14