CVE-2002-0597

Microsoft Windows 2000 - Denial of Service

Title source: rule

Description

LANMAN service on Microsoft Windows 2000 allows remote attackers to cause a denial of service (CPU/memory exhaustion) via a stream of malformed data to microsoft-ds port 445.

Exploits (2)

exploitdb WRITEUP VERIFIED

by ch0wn · textdoswindows

https://www.exploit-db.com/exploits/21389

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Daniel Nystrom · cdoswindows

https://www.exploit-db.com/exploits/21388

View Code ZIP pw:eip

References (7)

[US Government Resource] http://www.kb.cert.org/vuls/id/693099

[Third Party Advisory, VDB Entry] http://www.osvdb.org/5179

[Vendor Advisory] http://www.iss.net/security_center/static/8867.php

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/4532

[Third Party Advisory] http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0025.html

[Patch, Vendor Advisory] http://online.securityfocus.com/archive/1/268066

[Vendor Advisory] http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ320751

Scores

EPSS 0.6239

EPSS Percentile 98.4%

Details

Status published

Products (1)

microsoft/windows_2000 (3 CPE variants)

Published Jun 18, 2002

Tracked Since Feb 18, 2026