CVE-2004-2176

Microsoft Windows XP SP2 - Auth Bypass

Title source: llm

Description

The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that bypasses the ICF access controls.

Exploits (1)

exploitdb WORKING POC VERIFIED

by americanidiot · clocalwindows

https://www.exploit-db.com/exploits/24682

View Code ZIP pw:eip

References (2)

[Exploit] http://www.securityfocus.com/bid/11410

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/378508

Scores

EPSS 0.0049

EPSS Percentile 65.7%

Details

Status published

Products (1)

microsoft/windows_xp (3 CPE variants)

Published Dec 31, 2004

Tracked Since Feb 18, 2026