CVE-2002-1117

Sažetak

Veritas Backup Exec 8.5 and earlier requires that the "RestrictAnonymous" registry key for Microsoft Exchange 2000 must be set to 0, which enables anonymous listing of the SAM database and shares.

Reference

http://marc.info/?l=bugtraq&m=103134395124579&w=2
http://marc.info/?l=bugtraq&m=103134930629683&w=2
http://seer.support.veritas.com/docs/238618.htm
http://www.osvdb.org/8230
https://exchange.xforce.ibmcloud.com/vulnerabilities/10093
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1036

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

10-10-2017 - 01:30

Objavljeno

04-10-2002 - 04:00