Vulnerability CVE-2000-1164


Published: 2001-01-09   Modified: 2012-02-12

Description:
WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system.

CVSS2 => (AV:N/AC:L/Au:S/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
9/10
10/10
8/10
Exploit range
Attack complexity
Authentication
Remote
Low
Single time
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
ATT -> Winvnc 

 References:
http://archives.neohapsis.com/archives/bugtraq/2000-11/0253.html
http://www.securityfocus.com/bid/1961
https://exchange.xforce.ibmcloud.com/vulnerabilities/5545

Copyright 2024, cxsecurity.com

 

Back to Top