CVE-2002-2077

Medium

5/10

Summary

The DCOM client in Windows 2000 before SP3 does not properly clear memory before sending an "alter context" request, which may allow remote attackers to obtain sensitive information by sniffing the session.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published Dec 31, 2002

CVE-2002-2077

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS