Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.801991
Kategorie:Windows
Titel:Microsoft Windows SMB/NETBIOS NULL Session Authentication Bypass Vulnerability
Zusammenfassung:The host is running SMB/NETBIOS and prone to an authentication; bypass vulnerability.
Beschreibung:Summary:
The host is running SMB/NETBIOS and prone to an authentication
bypass vulnerability.

Vulnerability Insight:
The flaw is due to an SMB share, allows full access to Guest users.
If the Guest account is enabled, anyone can access the computer without a valid user account or password.

Vulnerability Impact:
Successful exploitation could allow attackers to use shares to
cause the system to crash.

Affected Software/OS:
- Microsoft Windows 95

- Microsoft Windows 98

- Microsoft Windows NT

- Microsoft Windows 2000

- Microsoft Windows in other implementations / versions might be affected as well

Solution:
No known solution was made available for at least one year
since the disclosure of this vulnerability. Likely none will be provided anymore.
General solution options are to upgrade to a newer release, disable respective
features, remove the product or replace the product by another one.

A workaround is to,

- Disable null session login.

- Remove the share.

- Enable passwords on the share.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-1999-0519
CopyrightCopyright (C) 2011 Greenbone Networks GmbH

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.