Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0673Microsoft Windows NT vulnerability

5 documents5 sources
Severity
5.0MEDIUMNVD
EPSS
20.3%
top 4.48%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Microsoft Windows NT
Timeline
PublishedJul 27
Latest updateApr 30

Description

The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoofed Name Conflict or Name Release datagram, aka the "NetBIOS Name Server Protocol Spoofing" vulnerability.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDmicrosoft/windows_nt4.0, terminal_server+1

Patches

Patch: www.securityfocus.comPatch: www.securityfocus.com

🔴Vulnerability Details

2
GHSA
GHSA-459f-26mc-vgm2: The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoof2022-04-30
CVEList
CVE-2000-0673: The NetBIOS Name Server (NBNS) protocol does not perform authentication, which allows remote attackers to cause a denial of service by sending a spoof2000-10-13

💥Exploits & PoCs

1
Exploit-DB
Microsoft Windows NT 4.0/2000 - NetBIOS Name Conflict2000-08-01

🕵️Threat Intelligence

1
Huntress
CVE-2000-0673 (NetBIOS Name Spoofing) Vulnerability: Analysis & Mitigation | Huntress
CVE-2000-0673 — Microsoft Windows NT vulnerability | cvebase