CVE-2002-1256 in Windowsinfo

Summary

The SMB signing capability in the Server Message Block (SMB) protocol in Microsoft Windows 2000 and Windows XP allows attackers to disable the digital signing settings in an SMB session to force the data to be sent unsigned, then inject data into the session without detection, e.g. by modifying group policy information sent from a domain controller.

Be aware that VulDB is the high quality source for vulnerability data.

Disclosure

12/23/2002

Moderation

VulDB entry created

Entries

1: VDB-19231

CPE

ready

CWE

CWE-345 (Unconfirmed)

CVSS

6.3

EPSS

0.31587

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1256
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1256
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1256/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!