Vulnerability Description
The Remote Desktop Sharing (RDS) Screen Saver Protection capability for Microsoft NetMeeting 3.01 through SP2 (4.4.3396) allows attackers with physical access to hijack remote sessions by entering certain logoff or shutdown sequences (such as CTRL-ALT-DEL) and canceling out of the resulting user confirmation prompts, such as when the remote user is editing a document.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Netmeeting | 3.01 |
References
- http://marc.info/?l=bugtraq&m=103228375116204&w=2
- http://www.iss.net/security_center/static/10119.phpVendor Advisory
- http://www.securityfocus.com/bid/5715
- http://marc.info/?l=bugtraq&m=103228375116204&w=2
- http://www.iss.net/security_center/static/10119.phpVendor Advisory
- http://www.securityfocus.com/bid/5715
FAQ
What is CVE-2002-1150?
CVE-2002-1150 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The Remote Desktop Sharing (RDS) Screen Saver Protection capability for Microsoft NetMeeting 3.01 through SP2 (4.4.3396) allows attackers with physical access to hijack remote sessions by entering cer...
How severe is CVE-2002-1150?
CVE-2002-1150 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1150?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Netmeeting.