Vulnerability Description
WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwords and gain access to the system.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Att | Winvnc | 3.3.3 |
References
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0253.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/1961PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5545
- http://archives.neohapsis.com/archives/bugtraq/2000-11/0253.htmlPatchVendor Advisory
- http://www.securityfocus.com/bid/1961PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5545
FAQ
What is CVE-2000-1164?
CVE-2000-1164 is a vulnerability with a CVSS score of 9.0 (HIGH). WinVNC installs the WinVNC3 registry key with permissions that give Special Access (read and modify) to the Everybody group, which allows users to read and modify sensitive information such as passwor...
How severe is CVE-2000-1164?
CVE-2000-1164 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2000-1164?
Check the references section above for vendor advisories and patch information. Affected products include: Att Winvnc.