CVE-2000-1200 — Microsoft Windows NT vulnerability

8 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

19.0%

top 4.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedAug 31

Latest updateApr 30

Description

Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy function via a null session and using the SID to list the users.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-pcqx-qgqf-w5jw: Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy function via a↗2022-04-30

▶

CVEList

CVE-2000-1200: Windows NT allows remote attackers to list all users in a domain by obtaining the domain SID with the LsaQueryInformationPolicy policy function via a↗2002-03-09

▶

💥Exploits & PoCs

Exploit-DB

Solare Datensysteme Solar-Log Devices 2.8.4-56/3.5.2-85 - Multiple Vulnerabilities↗2017-03-22

▶

Exploit-DB

HP-UX 11.0 - '/bin/cu' Local Privilege Escalation↗2001-01-13

▶

Exploit-DB

Solaris 2.6/7.0 - 'lpset -r' Local Buffer Overflow (2)↗2000-04-24

▶

Exploit-DB

Solaris 2.6/7.0/8 - 'netpr' Local Buffer Overflow (1)↗1999-05-23

▶

Exploit-DB

Solaris 2.6/7.0/8 - 'netpr' Local Buffer Overflow (2)↗1999-03-04

▶