Description
Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Martin Dolphin · textlocalwindows
https://www.exploit-db.com/exploits/19196
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_mskb
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ230681
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-017
Scores
EPSS
0.6545
EPSS Percentile
98.5%
Details
CWE
CWE-255
Status
published
Products (3)
microsoft/windows_2000
microsoft/windows_nt
microsoft/windows_nt
4.0 sp1 (5 CPE variants)
Published
May 27, 1999
Tracked Since
Feb 18, 2026