Executive Summary

Informations
NameMS05-007First vendor Publication0000-00-00
VendorMicrosoftLast vendor Modification0000-00-00
Severity (Vendor) N/ARevisionN/A

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Vulnerability in Windows Could Allow Information Disclosure (888302)

Original Source

Url : http://technet.microsoft.com/en-us/security/bulletin/MS05-007

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:3055
 
Oval ID: oval:org.mitre.oval:def:3055
Title: Windows XP Named Pipe Vulnerability (64-bit architecture)
Description: The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2005-0051
Version: 4
Platform(s): Microsoft Windows XP
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:2292
 
Oval ID: oval:org.mitre.oval:def:2292
Title: Windows XP Named Pipe Vulnerability (32-bit architecture)
Description: The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
Family: windows Class: vulnerability
Reference(s): CVE-2005-0051
Version: 6
Platform(s): Microsoft Windows XP
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Os3

Open Source Vulnerability Database (OSVDB)

idDescription
13596Microsoft Windows XP Named Pipe Username Disclosure

Nessus® Vulnerability Scanner

DateDescription
2005-02-10Name : System information about the remote host can be obtained by an anonymous user.
File : smb_kb888302.nasl - Type : ACT_GATHER_INFO
2005-02-09Name : It is possible to disclose information about the remote host.
File : smb_nt_ms05-007.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2014-02-17 11:45:07
  • Multiple Updates