CVE-2002-0863

Currently unrated

Key Information:

Vendor: Microsoft
Status: .net Windows Server
Vendor: CVE Published:; 11 October 2002

Summary

Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol."

References

http://www.securityfocus.com/bid/5711

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.iss.net/security_center/static/10122.php

vdb-entryx_refsource_XF

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 11, 2002
Vulnerability Reserved
Aug 15, 2002

Collectors

NVD DatabaseMitre Database