CVE-1999-0815 — Missing Release of Memory after Effective Lifetime in Microsoft Windows NT

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

17.1%

top 4.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedDec 31

Latest updateApr 30

Description

Memory leak in SNMP agent in Windows NT 4.0 before SP5 allows remote attackers to conduct a denial of service (memory exhaustion) via a large number of queries.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: support.microsoft.com ↗Patch: support.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-hj67-mggc-gx7v: Memory leak in SNMP agent in Windows NT 4↗2022-04-30

▶

CVEList

CVE-1999-0815: Memory leak in SNMP agent in Windows NT 4↗2002-03-09

▶