Memory Leak Vulnerability in Windows NT and Windows 2000 Terminal Services
CVE-2001-0540

Currently unrated

Key Information:

Vendor: Microsoft
Status: Terminal Server
Vendor: CVE Published:; 30 October 2001

Summary

A memory leak vulnerability exists in Windows NT and Windows 2000 Terminal Services, which can be exploited by remote attackers. By sending a significant amount of malformed Remote Desktop Protocol (RDP) requests to the service operating on port 3389, attackers can induce memory exhaustion, leading to a denial of service condition. This allows the remote system to become unresponsive, severely impacting operations.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/6912

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/3099

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

29% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 30, 2001
Vulnerability Reserved
Jul 10, 2001