CVE-1999-1593 - OpenCVE

Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:H/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Microsoft	Windows 2000 Windows 95 Windows 98

Configuration 1 [-]

OR	cpe:2.3:o:microsoft:windows_2000:-:::::::*
	cpe:2.3:o:microsoft:windows_95:-:::::::*
	cpe:2.3:o:microsoft:windows_98:-:::::::*

No data.

References

Link	Providers
http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html
http://seclists.org/bugtraq/2001/Jan/0264.html
http://seclists.org/bugtraq/2001/Jan/0269.html
http://seclists.org/bugtraq/2001/Jan/0271.html
http://seclists.org/bugtraq/2001/Jan/0274.html
http://seclists.org/bugtraq/2001/Jan/0276.html
http://seclists.org/bugtraq/2001/Jan/0289.html
http://seclists.org/bugtraq/2001/Jan/0298.html
http://www.securityfocus.com/bid/2221
https://www2.sans.org/reading_room/whitepapers/win2k/185.php

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-01-15T01:00:00Z

Updated: 2024-09-16T23:06:43.133Z

Reserved: 2009-01-14T00:00:00Z

Link: CVE-1999-1593

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2009-01-15T01:30:00.407

Modified: 2020-01-10T20:07:30.563

Link: CVE-1999-1593

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2009-01-15T01:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "19990302 NT Domain DoS and Security Exploit with SAMBA Server", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"name": "20010118 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"tags": ["x_refsource_MISC"], "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}, {"name": "2221", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/2221"}, {"name": "20010117 Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"name": "20010119 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"name": "20010118 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-1999-1593", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "19990302 NT Domain DoS and Security Exploit with SAMBA Server", "refsource": "NTBUGTRAQ", "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"name": "20010118 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"name": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php", "refsource": "MISC", "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}, {"name": "2221", "refsource": "BID", "url": "http://www.securityfocus.com/bid/2221"}, {"name": "20010117 Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"name": "20010119 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"name": "20010117 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"name": "20010118 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"name": "20010117 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"name": "20010117 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T17:18:07.562Z"}, "title": "CVE Program Container", "references": [{"name": "19990302 NT Domain DoS and Security Exploit with SAMBA Server", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"name": "20010118 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}, {"name": "2221", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/2221"}, {"name": "20010117 Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"name": "20010119 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"name": "20010118 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-1999-1593", "datePublished": "2009-01-15T01:00:00Z", "dateReserved": "2009-01-14T00:00:00Z", "dateUpdated": "2024-09-16T23:06:43.133Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*", "matchCriteriaId": "685F1981-EA61-4A00-89F8-A748A88962F8", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_95:-:*:*:*:*:*:*:*", "matchCriteriaId": "31B44B93-D27B-4F6A-B3D4-9FF95AD8287E", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_98:-:*:*:*:*:*:*:*", "matchCriteriaId": "40FC681A-7B85-4495-8DCC-C459FE7E2F13", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable."}, {"lang": "es", "value": "Windows Internet Naming Service (WINS), permite atacantes remotos provocar una denegaci\u00f3n de servicio (p\u00e9rdida de conexi\u00f3n) o el robo de credenciales a trav\u00e9s de una inscripci\u00f3n 1Ch que hace que WINS se cambie de controlador de dominio para apuntar a un servidor malicioso. NOTA: este problema puede estar limitado cuando se usan clientes Windows 95/98, o si el primer controlador de dominio no est\u00e1 disponible."}], "id": "CVE-1999-1593", "lastModified": "2020-01-10T20:07:30.563", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-01-15T01:30:00.407", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/2221"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Exploit"], "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}