CVE-2002-0864 — Microsoft NET Windows Server vulnerability

3 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

23.5%

top 4.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft NET Windows Server

Timeline

PublishedOct 11

Latest updateApr 30

Description

The Remote Data Protocol (RDP) version 5.1 in Microsoft Windows XP allows remote attackers to cause a denial of service (crash) when Remote Desktop is enabled via a PDU Confirm Active data packet that does not set the Pattern BLT command, aka "Denial of Service in Remote Desktop."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDmicrosoft/net_windows_serverbeta3

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-fr35-62xv-r8c8: The Remote Data Protocol (RDP) version 5↗2022-04-30

▶

CVEList

CVE-2002-0864: The Remote Data Protocol (RDP) version 5↗2004-09-01

▶