CVE-2004-2176

Name of the Vulnerable Software and Affected Versions Microsoft Windows XP SP2

Description The issue concerns the Internet Connection Firewall (ICF) in Microsoft Windows XP SP2, which is configured by default to trust sessmgr.exe. This trust allows local users to utilize sessmgr.exe for creating a local listening port, effectively bypassing the ICF access controls.

Recommendations For Microsoft Windows XP SP2, consider restricting access to sessmgr.exe to prevent its misuse in bypassing ICF controls. As a temporary workaround, limiting the functionality of sessmgr.exe can help minimize the risk of exploitation until a more permanent solution is available.