Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0755 — Microsoft Windows NT vulnerability

CWE-2554 documents4 sources
Severity
5.0MEDIUMNVD
EPSS
65.5%
top 1.50%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Windows NT
Timeline
PublishedMay 27
Latest updateApr 30

Description

Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-g6q4-7rrm-ppv6: Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option↗2022-04-30
â–¶
CVEList
CVE-1999-0755: Windows NT RRAS and RAS clients cache a user's password even if the user has not selected the "Save password" option↗2000-01-04
â–¶

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows NT 4.0/4.0 SP1/4.0 SP2/4.0 SP3/4.0 SP4/4.0 SP5 - RAS Dial-up Networking Save Password↗1998-03-19
â–¶
CVE-1999-0755 — Microsoft Windows NT vulnerability | cvebase