PT-1999-1717 · Microsoft · Windows Nt

Published

1999-12-31

Updated

2017-10-10

CVE-1999-1455

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Windows NT versions 3.5 through 4.0

Description: The RSH service utility RSHSVC does not properly restrict access as specified in the .Rhosts file when a user comes from an authorized host. This could allow unauthorized users to access the service by logging in from an authorized host.

Recommendations: For Windows NT versions 3.5 through 4.0, consider restricting access to the RSH service utility RSHSVC to minimize the risk of exploitation. As a temporary workaround, review and update the .Rhosts file to ensure it accurately reflects authorized hosts and users.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1455

Affected Products

Windows Nt

PT-1999-1717 · Microsoft · Windows Nt

CVE-1999-1455

Related Identifiers

Affected Products

References · 3