Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-2150 | First vendor Publication | 2005-07-11 |
Vendor | Cve | Last vendor Modification | 2017-07-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N) | |||
---|---|---|---|
Cvss Base Score | 5 | Attack Range | Network |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Windows NT 4.0 and Windows 2000 before URP1 for Windows 2000 SP4 does not properly prevent NULL sessions from accessing certain alternate named pipes, which allows remote attackers to (1) list Windows services via svcctl or (2) read eventlogs via eventlog. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2150 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Os | 1 | |
Os | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
17860 | Microsoft Windows NULL Session MSRPC Interface Remote eventlog Disclosure |
17859 | Microsoft Windows NULL Session svcctl MSRPC Interface SCM Service Enumeration |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2005-07-05 | Name : The remote host allows null session event log reading. File : smb_event_log_null_session.nasl - Type : ACT_GATHER_INFO |
2005-06-29 | Name : The remote host allows null session enumeration of running services. File : smb_enum_services_null_session.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:03:03 |
|
2021-04-22 01:03:19 |
|
2020-05-23 00:16:40 |
|
2017-07-11 12:01:57 |
|
2016-10-18 12:01:43 |
|
2016-04-26 13:38:41 |
|
2014-02-17 10:32:01 |
|
2013-05-11 11:28:25 |
|