Vulnerabilities > CVE-2000-0834 - Unspecified vulnerability in Microsoft Windows 2000

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
microsoft
nessus
exploit available

Summary

The Windows 2000 telnet client attempts to perform NTLM authentication by default, which allows remote attackers to capture and replay the NTLM challenge/response via a telnet:// URL that points to the malicious server, aka the "Windows 2000 Telnet Client NTLM Authentication" vulnerability.

Vulnerable Configurations

Part Description Count
OS
Microsoft
1

Exploit-Db

descriptionMicrosoft Windows 2000 telnet.exe NTLM Authentication Vulnerability. CVE-2000-0834. Remote exploit for windows platform
idEDB-ID:20222
last seen2016-02-02
modified2000-08-14
published2000-08-14
reporter@stake
sourcehttps://www.exploit-db.com/download/20222/
titleMicrosoft Windows 2000 telnet.exe NTLM Authentication Vulnerability

Nessus

NASL familyWindows : Microsoft Bulletins
NASL idSMB_NT_MS00-067.NASL
descriptionThe hotfix for the
last seen2020-06-01
modified2020-06-02
plugin id10519
published2000-09-25
reporterThis script is Copyright (C) 2000-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/10519
titleMS00-067: Telnet Client NTLM Authentication Vulnerability (272743)