CVE-2000-0328 — Microsoft Windows NT vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

22.6%

top 4.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedAug 24

Latest updateApr 30

Description

Windows NT 4.0 generates predictable random TCP initial sequence numbers (ISN), which allows remote attackers to perform spoofing and session hijacking.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

🔴Vulnerability Details

GHSA

GHSA-pwww-664m-pfp9: Windows NT 4↗2022-04-30

▶

CVEList

CVE-2000-0328: Windows NT 4↗2000-06-02

▶