5
CVE-2002-2077
- EPSS 15.79%
- Veröffentlicht 31.12.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:00:36
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The DCOM client in Windows 2000 before SP3 does not properly clear memory before sending an "alter context" request, which may allow remote attackers to obtain sensitive information by sniffing the session.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 15.79% | 0.965 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://support.microsoft.com/default.aspx?scid=kb%3BEN-US%3Bq300367
http://www.bindview.com/Services/razor/Advisories/2002/adv_dcom.cfm
http://www.iss.net/security_center/static/8739.php
http://www.securityfocus.com/bid/4410