CVE-1999-0562

Windows NT and Windows 2000 - Unauthenticated Remote Registry Access

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0562. PoCs published by J D Glaser.

AI-analyzed exploit summary This exploit establishes a Null session with an NT host to enumerate shares, users, and identify the Administrator account (even if renamed) by leveraging the NetUseAdd and NetUserEnum APIs. It demonstrates an information leakage vulnerability in Windows NT systems.

Description

The registry in Windows NT can be accessed remotely by users who are not administrators.

Exploits (1)

exploitdb WORKING POC VERIFIED
by J D Glaser · textdoswindows
https://www.exploit-db.com/exploits/19372

This exploit establishes a Null session with an NT host to enumerate shares, users, and identify the Administrator account (even if renamed) by leveraging the NetUseAdd and NetUserEnum APIs. It demonstrates an information leakage vulnerability in Windows NT systems.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Windows NT
No auth needed
Prerequisites: Network access to the target NT host · SMB/IPC$ share accessibility
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1023

Scores

EPSS 0.1100
EPSS Percentile 95.4%

Details

Status published
Products (2)
microsoft/windows_2000
microsoft/windows_nt
Published Jan 01, 1997
Tracked Since Feb 18, 2026