Vulnerability Description
Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijacking of resources such as named pipes.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0232.html
- http://www.iss.net/security_center/static/6590.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/2764ExploitPatchVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2001-05/0232.html
- http://www.iss.net/security_center/static/6590.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/2764ExploitPatchVendor Advisory
FAQ
What is CVE-2001-1347?
CVE-2001-1347 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other process...
How severe is CVE-2001-1347?
CVE-2001-1347 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1347?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000.