CVE-1999-0995

Windows NT Local Security Authority (LSA) allows remote attackers to cause a denial of service via malformed arguments to the LsaLookupSids function which looks up the SID, aka "Malformed Security Identifier Request."

Published: Dec 16, 1999
Updated: Apr 13, 2023
CVE: CVE-1999-0995
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
microsoft / windows_nt	4.0	4.0.x
microsoft / windows_nt	4.0-sp1	4.0-sp1.x

http://support.microsoft.com/default.aspx?scid=kb;[LN];Q248185
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ248185
http://www.securityfocus.com/bid/875
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-057

Vulnerability Database

289,697

CVE-1999-0995