CVE-1999-1455

RSH service utility RSHSVC in Windows NT 3.5 through 4.0 does not properly restrict access as specified in the .Rhosts file when a user comes from an authorized host, which could allow unauthorized users to access the service by logging in from an authorized host.

Published: Dec 31, 1999
Updated: Apr 13, 2023
CVE: CVE-1999-1455
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / windows_nt	-	4.0.x

http://support.microsoft.com/support/kb/articles/q158/3/20.asp
https://exchange.xforce.ibmcloud.com/vulnerabilities/7422

Vulnerability Database

289,689

CVE-1999-1455