Lucene search

[email protected]CVE-2001-0373

HistoryMar 09, 2002 - 5:00 a.m.

CVE-2001-0373

2002-03-0905:00:00

[email protected]

web.nvd.nist.gov

windows nt

windows 2000

dr. watson

user.dmp

sensitive information

default configuration

local user access.

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.9%

JSON

The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access to sensitive information.

Affected configurations

NVD

Node

microsoftwindows_2000

microsoftwindows_ntMatch4.0

CPENameOperatorVersion
microsoft:windows_2000microsoft windows 2000eq*
microsoft:windows_ntmicrosoft windows nteq4.0

CPE	Name	Operator	Version
microsoft:windows_2000	microsoft windows 2000	eq	*
microsoft:windows_nt	microsoft windows nt	eq	4.0

References

archives.neohapsis.com/archives/bugtraq/2001-03/0336.html

www.osvdb.org/5683

www.securityfocus.com/bid/2501

exchange.xforce.ibmcloud.com/vulnerabilities/6275

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.9 Medium

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.9%

JSON

Related for CVE-2001-0373

nvd1 cvelist1