ID |
CVE-2000-1164
|
Summary |
WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 9.0 (as of 10-10-2017 - 01:29) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
SINGLE |
|
Impact |
Confidentiality | Integrity | Availability |
COMPLETE |
COMPLETE |
COMPLETE |
|
cvss-vector
via4
|
AV:N/AC:L/Au:S/C:C/I:C/A:C
|
refmap
via4
|
bid | 1961 | bugtraq | 20001118 WinVNC 3.3.x | xf | winvnc-modify-registry(5545) |
|
Last major update |
10-10-2017 - 01:29 |
Published |
09-01-2001 - 05:00 |
Last modified |
10-10-2017 - 01:29 |