CVE-2000-0259 — HIGH (7.2) — White Hats Nepal

Vulnerability Description

The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users.

CVSS Score

7.2

HIGH

AV:L/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Microsoft	Terminal Server	All versions
Microsoft	Windows Nt	4.0

References

http://www.securityfocus.com/bid/1105PatchVendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-02
http://www.securityfocus.com/bid/1105PatchVendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-02

FAQ

What is CVE-2000-0259?

CVE-2000-0259 is a vulnerability with a CVSS score of 7.2 (HIGH). The default permissions for the Cryptography\Offload registry key used by the OffloadModExpo in Windows NT 4.0 allows local users to obtain compromise the cryptographic keys of other users.

How severe is CVE-2000-0259?

CVE-2000-0259 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0259?

Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Terminal Server, Microsoft Windows Nt.