|
|
Microsoft Windows SMB NTLM Authentication Interception Weakness
|
Bugtraq ID:
|
7385
|
|
Class:
|
Design Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Apr 19 2003 12:00AM
|
|
Updated:
|
Apr 19 2003 12:00AM
|
|
Credit:
|
This issue was reported by Salman Niksefat (salman@linux.ce.aut.ac.ir) and Haamed Gheibi (haamed@linux.ce.aut.ac.ir).
|
|
Vulnerable:
|
Microsoft Windows XP Professional SP1
Microsoft Windows XP Professional
Microsoft Windows XP Home SP1
Microsoft Windows XP Home
Microsoft Windows ME
Microsoft Windows 98SE
Microsoft Windows 98
Microsoft Windows 95 SR2
Microsoft Windows 95
Microsoft Windows 2000 Server SP3
Microsoft Windows 2000 Server SP2
Microsoft Windows 2000 Server SP1
Microsoft Windows 2000 Server
+
Avaya DefinityOne Media Servers
+
Avaya IP600 Media Servers
+
Avaya S3400 Message Application Server
+
Avaya S8100 Media Servers
Microsoft Windows 2000 Professional SP3
Microsoft Windows 2000 Professional SP2
Microsoft Windows 2000 Professional SP1
Microsoft Windows 2000 Professional
Microsoft Windows 2000 Datacenter Server SP3
Microsoft Windows 2000 Datacenter Server SP2
Microsoft Windows 2000 Datacenter Server SP1
Microsoft Windows 2000 Datacenter Server
Microsoft Windows 2000 Advanced Server SP3
Microsoft Windows 2000 Advanced Server SP2
Microsoft Windows 2000 Advanced Server SP1
Microsoft Windows 2000 Advanced Server
|
|
|
|
Not Vulnerable:
|
|
|
|
