Executive Summary

Informations
Name MS05-007 First vendor Publication 0000-00-00
Vendor Microsoft Last vendor Modification 0000-00-00
Severity (Vendor) N/A Revision N/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerability in Windows Could Allow Information Disclosure (888302)

Original Source

Url : http://technet.microsoft.com/en-us/security/bulletin/MS05-007

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:3055
 
Oval ID: oval:org.mitre.oval:def:3055
Title: Windows XP Named Pipe Vulnerability (64-bit architecture)
Description: The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2005-0051
Version: 4
Platform(s): Microsoft Windows XP
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:2292
 
Oval ID: oval:org.mitre.oval:def:2292
Title: Windows XP Named Pipe Vulnerability (32-bit architecture)
Description: The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2005-0051
Version: 6
Platform(s): Microsoft Windows XP
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Os3

Open Source Vulnerability Database (OSVDB)

idDescription
13596Microsoft Windows XP Named Pipe Username Disclosure

Nessus® Vulnerability Scanner

DateDescription
2005-02-10Name : System information about the remote host can be obtained by an anonymous user.
File : smb_kb888302.nasl - Type : ACT_GATHER_INFO
2005-02-09Name : It is possible to disclose information about the remote host.
File : smb_nt_ms05-007.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2014-02-17 11:45:07
  • Multiple Updates