Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2002-1712

Microsoft Windows 2000 allows remote attackers to cause a denial of service (memory consumption) by sending a flood of empty TCP/IP packets with the ACK and FIN bits set to the NetBIOS port (TCP/139), as demonstrated by stream3.

  • Published: Dec 31, 2002
  • Updated: Apr 13, 2023
  • CVE: CVE-2002-1712
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
microsoft / windows_nt 4.0-sp5 4.0-sp5.x
microsoft / windows_nt 4.0-sp3 4.0-sp3.x
microsoft / windows_nt 4.0-sp6a 4.0-sp6a.x
microsoft / windows_2000 - -
microsoft / windows_nt 4.0 4.0.x
microsoft / windows_nt 4.0-sp1 4.0-sp1.x
microsoft / windows_nt 4.0-sp6 4.0-sp6.x
microsoft / windows_nt 4.0-sp4 4.0-sp4.x
microsoft / windows_nt 4.0-sp2 4.0-sp2.x