CVE-1999-0366

In some cases, Service Pack 4 for Windows NT 4.0 can allow access to network shares using a blank password, through a problem with a null NT hash value.

Published: Feb 8, 1999
Updated: Apr 13, 2023
CVE: CVE-1999-0366
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-287

OWASP TOP 10:

A2 - Broken Authentication

Affected Software
References

Software	From	Fixed in
microsoft / windows_nt	4.0-sp4	4.0-sp4.x

http://support.microsoft.com/default.aspx?scid=kb;[LN];Q214840
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ214840
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-004

Vulnerability Database

289,697

CVE-1999-0366