Описание
The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2005-0051
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-007
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19093
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2292
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3055
- http://secunia.com/advisories/14189
- http://securitytracker.com/id?1013112
- http://www.kb.cert.org/vuls/id/939074
- http://www.securityfocus.com/bid/12486
- http://www.us-cert.gov/cas/techalerts/TA05-039A.html
EPSS
CVE ID
Связанные уязвимости
The Server service (srvsvc.dll) in Windows XP SP1 and SP2 allows remote attackers to obtain sensitive information (users who are accessing resources) via an anonymous logon using a named pipe, which is not properly authenticated, aka the "Named Pipe Vulnerability."
EPSS