PT-2002-2471 · Microsoft · Windows 2000 Terminal Service

Published

2002-12-31

Updated

2019-04-30

CVE-2002-1749

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Windows 2000 Terminal Services (affected versions not specified)

Description The issue concerns a scenario where Windows 2000 Terminal Services, when using the disconnect feature of the client, fails to properly lock itself if left idle until the screen saver activates and the user disconnects. This could potentially allow attackers to gain administrator privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-1749

Affected Products

Windows 2000 Terminal Service

PT-2002-2471 · Microsoft · Windows 2000 Terminal Service

CVE-2002-1749

Related Identifiers

Affected Products

References · 4