CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-0347

Information disclosure vulnerability in Microsoft Windows 2000 telnet service allows remote attackers to determine the existence of user accounts such as Guest, or log in to the server without specifying the domain name, via a malformed userid.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.137

EPSS Ranking 94.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.ciac.org/ciac/bulletins/l-092.shtml
http://www.osvdb.org/5686
http://www.securityfocus.com/bid/2847
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-031
https://exchange.xforce.ibmcloud.com/vulnerabilities/6665
http://www.ciac.org/ciac/bulletins/l-092.shtml
http://www.osvdb.org/5686
http://www.securityfocus.com/bid/2847
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-031
https://exchange.xforce.ibmcloud.com/vulnerabilities/6665

Products affected by CVE-2001-0347

Microsoft » Windows 2000 » Version: N/A

cpe:2.3:o:microsoft:windows_2000:-
Microsoft » Windows 2000 » Version: beta3

cpe:2.3:o:microsoft:windows_2000:beta3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-0347

Products

Pricing

Contact Us