CVE-2000-0331
5
CVSS SCORE
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Description
Buffer overflow in Microsoft command processor (CMD.EXE) for Windows NT and Windows 2000 allows a local user to cause a denial of service via a long environment variable, aka the "Malformed Environment Variable" vulnerability.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
Low
Confidentiality
None
Integrity
None
Availability
P
Affected Software Configurations
- a microsoft terminal_server * * * * * * * *
- o microsoft windows_2000 * * * * * * * *
- o microsoft windows_nt 4.0 * * * * * * *
Weaknesses (CWE)
- NVD-CWE-Other
References & External Links
- http://archives.neohapsis.com/archives/bugtraq/2000-04/0147.html
- http://www.securityfocus.com/bid/1135
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-027
- http://archives.neohapsis.com/archives/bugtraq/2000-04/0147.html
- http://www.securityfocus.com/bid/1135
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-027