What is CVE-2002-0863?

CVE-2002-0863 is a vulnerability in Microsoft .Net_windows_server. Published 2002-10-11.

Is CVE-2002-0863 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Microsoft .Net_windows_server

CVE-2002-0863

Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sn…

EPSS: 0.220 (97.4th percentile) — read the EPSS interpretation.

Affected products

Microsoft .Net_windows_server — versions beta3
Microsoft Windows_2000
Microsoft Windows_2000_terminal_services
Microsoft Windows_nt — versions 4.0
Microsoft Windows_xp
N/a — versions n/a

Public proof-of-concept exploits

Farrhouq/Inpt-report

References

cve@mitre.org (vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_MS, vendor-advisory)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (US Government Resource, x_refsource_CERT-VN, third-party-advisory)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (vdb-entry, x_refsource_BID)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (vdb-entry, Vendor Advisory, x_refsource_XF)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)

Frequently asked questions

What is CVE-2002-0863?: CVE-2002-0863 is a vulnerability in Microsoft .Net_windows_server. Published 2002-10-11.
Is CVE-2002-0863 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.