CVE-2002-0366

Description

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

Related CPE's

Could not find any relations

References

http://www.nextgenss.com/vna/ms-ras.txt

Vendor Advisory

4852

PatchVendor Advisory

20020613 Microsoft RASAPI32.DLL

20020620 VPN and Q318138

oval:org.mitre.oval:def:63

oval:org.mitre.oval:def:61

MS02-029

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:L/AC:L/Au:N/C:C/I:C/A:C

AccessVector

LOCAL

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

COMPLETE

IntegrityImpact

COMPLETE

AvailabilityImpact

COMPLETE

BaseScore

7.199999809265137

Created by Yello
About Severity.io