CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2000-0331

Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.116

EPSS Ranking 93.2%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/bugtraq/2000-04/0147.html
http://www.securityfocus.com/bid/1135
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-027
http://archives.neohapsis.com/archives/bugtraq/2000-04/0147.html
http://www.securityfocus.com/bid/1135
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-027

Products affected by CVE-2000-0331

Microsoft » Terminal Server » Version: N/A

cpe:2.3:a:microsoft:terminal_server:-
Microsoft » Windows 2000 » Version: N/A

cpe:2.3:o:microsoft:windows_2000:-
Microsoft » Windows 2000 » Version: beta3

cpe:2.3:o:microsoft:windows_2000:beta3
Microsoft » Windows Nt » Version: 4.0

cpe:2.3:o:microsoft:windows_nt:4.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0331

Products

Pricing

Contact Us