CVE-2002-0366

CVE-2002-0366

EPSS 2.8%

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://online.securityfocus.com/archive/1/276776 http://online.securityfocus.com/archive/1/278145 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-029 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A61 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A63 http://www.nextgenss.com/vna/ms-ras.txt http://www.securityfocus.com/bid/4852