CVE-2001-0860

Terminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through a Network Address Translation (NAT).
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:*:*:*:*:*:*

History

No history.

Information

Published : 2001-12-06 05:00

Updated : 2024-02-04 16:31


NVD link : CVE-2001-0860

Mitre link : CVE-2001-0860

CVE.ORG link : CVE-2001-0860


JSON object : View

Products Affected

microsoft

  • windows_xp
  • windows_2000