Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0377Microsoft Windows NT vulnerability

21 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
10.5%
top 6.73%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Windows NT
Timeline
PublishedJun 8
Latest updateApr 30

Description

The Remote Registry server in Windows NT 4.0 allows local authenticated users to cause a denial of service via a malformed request, which causes the winlogon process to fail, aka the "Remote Registry Access Authentication" vulnerability.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-x6w9-h4wh-qw7r: The Remote Registry server in Windows NT 42022-04-30
CVEList
CVE-2000-0377: The Remote Registry server in Windows NT 42000-07-12

💥Exploits & PoCs

2
Exploit-DB
Microsoft Windows NT 4.0 - Remote Registry Request Denial of Service (MS00-040) (2)2000-06-08
Exploit-DB
Microsoft Windows NT 4.0 - Remote Registry Request Denial of Service (1)2000-06-08

🔍Detection Rules

16
Suricata
GPL NETBIOS SMB OpenKey andx overflow attempt2010-09-23
Suricata
GPL NETBIOS SMB OpenKey overflow attempt2010-09-23
Suricata
GPL NETBIOS SMB-DS OpenKey little endian andx overflow attempt2010-09-23
Suricata
GPL NETBIOS SMB-DS OpenKey andx overflow attempt2010-09-23
Suricata
GPL NETBIOS SMB-DS OpenKey unicode little endian overflow attempt2010-09-23
CVE-2000-0377 — Microsoft Windows NT vulnerability | cvebase