ID CVE-2002-0020
Summary Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed protocol options.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:interix:2.2:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:interix:2.2:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 12-10-2018 - 21:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
oval via4
accepted 2004-08-11T12:00:00.000-04:00
class vulnerability
contributors
  • name Christine Walzer
    organization The MITRE Corporation
  • name Christine Walzer
    organization The MITRE Corporation
description Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed protocol options.
family windows
id oval:org.mitre.oval:def:424
status accepted
submitted 2003-10-10T12:00:00.000-04:00
title Windows Telnet Server Buffer Overflow
version 63
refmap via4
bid 4061
ms MS02-004
xf ms-telnet-option-bo(8094)
Last major update 12-10-2018 - 21:30
Published 08-03-2002 - 05:00
Back to Top