Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2176


Vulnerability Score 4.6 4.6
CVE Id CVE-2004-2176
Last Modified 05 Sep 2008 04:43:24
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that bypasses the ICF access controls.

Vulnerable Systems

Operating System

  • Microsoft Windows Xp


BID - 11410

BUGTRAQ - 20041012 Writing Trojans that bypass Windows XP Service Pack 2 Firewall

Last Updated: 27 May 2016 10:39:22