CVSS: 7.2EPSS: 0%CPEs: 4EXPL: 0CVE-2002-1933
https://notcve.org/view.php?id=CVE-2002-1933
The terminal services screensaver for Microsoft Windows 2000 does not automatically lock the terminal window if the window is minimized, which could allow local users to gain access to the terminal server window. • http://online.securityfocus.com/archive/1/288415 http://www.iss.net/security_center/static/9946.php http://www.securityfocus.com/bid/5535 •
CVSS: 2.1EPSS: 0%CPEs: 21EXPL: 0CVE-2002-2132
https://notcve.org/view.php?id=CVE-2002-2132
Windows File Protection (WFP) in Windows 2000 and XP does not remove old security catalog .CAT files, which could allow local users to replace new files with vulnerable old files that have valid hash codes. • http://archives.neohapsis.com/archives/bugtraq/2002-12/0250.html http://www.iss.net/security_center/static/10957.php http://www.securityfocus.com/bid/6483 •
CVSS: 7.1EPSS: 2%CPEs: 1EXPL: 0CVE-2002-2328
https://notcve.org/view.php?id=CVE-2002-2328
Active Directory in Windows 2000, when supporting Kerberos V authentication and GSSAPI, allows remote attackers to cause a denial of service (hang) via an LDAP client that sets the page length to zero during a large request. Active Directory en Windows 2000, con soporte a la autenticación Kerberos V y GSSAPI, permite a los atacantes remotos provocar una denegación de servicio (hang) a través de un cliente LDAP que establece la longitud de la página en cero durante una petición grande. • http://online.securityfocus.com/archive/1/273771 http://www.iss.net/security_center/static/9159.php http://www.securityfocus.com/bid/4804 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 2%CPEs: 5EXPL: 0CVE-2002-1932
https://notcve.org/view.php?id=CVE-2002-1932
Microsoft Windows XP and Windows 2000, when configured to send administrative alerts and the "Do not overwrite events (clear log manually)" option is set, does not notify the administrator when the log reaches its maximum size, which allows local users and remote attackers to avoid detection. • http://online.securityfocus.com/archive/1/295341 http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3B329350 http://www.iss.net/security_center/static/10377.php http://www.securityfocus.com/bid/5972 •
CVSS: 7.2EPSS: 0%CPEs: 3EXPL: 0CVE-2002-1749
https://notcve.org/view.php?id=CVE-2002-1749
Windows 2000 Terminal Services, when using the disconnect feature of the client, does not properly lock itself if it is left idle until the screen saver activates and the user disconnects, which could allow attackers to gain administrator privileges. • http://www.ntbugtraq.com/default.aspx?pid=36&sid=1&A2=ind0202&L=ntbugtraq&T=0&O=D&F=N&P=5224 http://www.securityfocus.com/bid/4095 https://exchange.xforce.ibmcloud.com/vulnerabilities/8199 •