NT RAS Dial-up Networking "Save Password" Vulnerability

Bugtraq ID: 232
Class: Design Error
CVE:
Remote: Yes
Local: Yes
Published: Mar 19 1998 12:00AM
Updated: Mar 19 1998 12:00AM
Credit: This vulnerability was posted to NTBugtraq by Lisa O'Connor, Martin Dolphin, Joe Greene, and Eric Schultze.
Vulnerable: Microsoft Windows NT 4.0 SP5
+ Microsoft Windows NT Enterprise Server 4.0 SP5
 + Microsoft Windows NT Enterprise Server 4.0 SP5
 + Microsoft Windows NT Server 4.0 SP5
 + Microsoft Windows NT Server 4.0 SP5
 + Microsoft Windows NT Terminal Server 4.0 SP5
 + Microsoft Windows NT Terminal Server 4.0 SP5
 + Microsoft Windows NT Workstation 4.0 SP5
 + Microsoft Windows NT Workstation 4.0 SP5
 Microsoft Windows NT 4.0 SP4
+ Microsoft Windows NT Enterprise Server 4.0 SP4
 + Microsoft Windows NT Enterprise Server 4.0 SP4
 + Microsoft Windows NT Server 4.0 SP4
 + Microsoft Windows NT Server 4.0 SP4
 + Microsoft Windows NT Terminal Server 4.0 SP4
 + Microsoft Windows NT Terminal Server 4.0 SP4
 + Microsoft Windows NT Workstation 4.0 SP4
 + Microsoft Windows NT Workstation 4.0 SP4
 Microsoft Windows NT 4.0 SP3
+ Microsoft Windows NT Enterprise Server 4.0 SP3
 + Microsoft Windows NT Enterprise Server 4.0 SP3
 + Microsoft Windows NT Server 4.0 SP3
 + Microsoft Windows NT Server 4.0 SP3
 + Microsoft Windows NT Terminal Server 4.0 SP3
 + Microsoft Windows NT Terminal Server 4.0 SP3
 + Microsoft Windows NT Workstation 4.0 SP3
 + Microsoft Windows NT Workstation 4.0 SP3
 Microsoft Windows NT 4.0 SP2
+ Microsoft Windows NT Enterprise Server 4.0 SP2
 + Microsoft Windows NT Enterprise Server 4.0 SP2
 + Microsoft Windows NT Server 4.0 SP2
 + Microsoft Windows NT Server 4.0 SP2
 + Microsoft Windows NT Terminal Server 4.0 SP2
 + Microsoft Windows NT Terminal Server 4.0 SP2
 + Microsoft Windows NT Workstation 4.0 SP2
 + Microsoft Windows NT Workstation 4.0 SP2
 Microsoft Windows NT 4.0 SP1
+ Microsoft Windows NT Enterprise Server 4.0 SP1
 + Microsoft Windows NT Enterprise Server 4.0 SP1
 + Microsoft Windows NT Server 4.0 SP1
 + Microsoft Windows NT Server 4.0 SP1
 + Microsoft Windows NT Terminal Server 4.0 SP1
 + Microsoft Windows NT Terminal Server 4.0 SP1
 + Microsoft Windows NT Workstation 4.0 SP1
 + Microsoft Windows NT Workstation 4.0 SP1
 Microsoft Windows NT 4.0
+ Microsoft Windows NT Enterprise Server 4.0
 + Microsoft Windows NT Enterprise Server 4.0
 + Microsoft Windows NT Server 4.0
 + Microsoft Windows NT Server 4.0
 + Microsoft Windows NT Terminal Server 4.0
 + Microsoft Windows NT Terminal Server 4.0
 + Microsoft Windows NT Workstation 4.0
 + Microsoft Windows NT Workstation 4.0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus