CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-0366

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 64.8%

CVSS Severity

CVSS v2 Score 7.2

References

http://online.securityfocus.com/archive/1/276776
http://online.securityfocus.com/archive/1/278145
http://www.nextgenss.com/vna/ms-ras.txt
http://www.securityfocus.com/bid/4852
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-029
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A61
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A63
http://online.securityfocus.com/archive/1/276776
http://online.securityfocus.com/archive/1/278145
http://www.nextgenss.com/vna/ms-ras.txt
http://www.securityfocus.com/bid/4852
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-029
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A61
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A63

Products affected by CVE-2002-0366

Microsoft » Windows 2000 » Version: N/A

cpe:2.3:o:microsoft:windows_2000:-
Microsoft » Windows 2000 » Version: beta3

cpe:2.3:o:microsoft:windows_2000:beta3
Microsoft » Windows Nt » Version: 4.0

cpe:2.3:o:microsoft:windows_nt:4.0
Microsoft » Windows Xp » Version: Any

cpe:2.3:o:microsoft:windows_xp:*
Microsoft » Windows Xp » Version: N/A

cpe:2.3:o:microsoft:windows_xp:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-0366

Products

Pricing

Contact Us