Vulnerability Description
The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access to sensitive information.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows Nt | 4.0 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0336.html
- http://www.osvdb.org/5683
- http://www.securityfocus.com/bid/2501PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6275
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0336.html
- http://www.osvdb.org/5683
- http://www.securityfocus.com/bid/2501PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6275
FAQ
What is CVE-2001-0373?
CVE-2001-0373 is a vulnerability with a CVSS score of 2.1 (LOW). The default configuration of the Dr. Watson program in Windows NT and Windows 2000 generates user.dmp crash dump files with world-readable permissions, which could allow a local user to gain access to...
How severe is CVE-2001-0373?
CVE-2001-0373 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0373?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows Nt.