Remote Code Execution Vulnerability in Microsoft ISA Server 2000 Using NetBIOS Protocol
CVE-2005-1216

Currently unrated

Key Information:

Vendor: Microsoft
Status: Isa Server
Vendor: CVE Published:; 14 June 2005

What is CVE-2005-1216?

The vulnerability in Microsoft ISA Server 2000 allows remote attackers to exploit a flaw in handling NetBIOS protocol connections. By sending carefully crafted packets to the server, an attacker can gain unauthorized access to network services that utilize the NetBIOS protocol, potentially leading to remote code execution. This issue arises when the ISA Server employs the predefined packet filter for NetBIOS connections, which could allow malicious actors to bypass security controls and perform unauthorized actions on the server.

References

http://www.kb.cert.org/vuls/id/367077

third-party-advisoryx_refsource_CERT-VN

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://www.securityfocus.com/bid/13954

vdb-entryx_refsource_BID

EPSS Score

43% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 14, 2005
Vulnerability Reserved
Apr 22, 2005