Vulnerability Details : CVE-2001-1347
Windows 2000 allows local users to cause a denial of service and possibly gain privileges by setting a hardware breakpoint that is handled using global debug registers, which could cause other processes to terminate due to an exception, and allow hijacking of resources such as named pipes.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2001-1347
Probability of exploitation activity in the next 30 days: 0.05%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 17 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2001-1347
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
NIST |
References for CVE-2001-1347
-
http://www.securityfocus.com/bid/2764
Exploit;Patch;Vendor Advisory
-
http://www.iss.net/security_center/static/6590.php
Patch;Vendor Advisory
-
http://archives.neohapsis.com/archives/bugtraq/2001-05/0232.html
Products affected by CVE-2001-1347
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*