CVE-1999-1593 - OpenCVE

Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:H/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Microsoft	Windows 2000 Windows 98 Windows 95

Configuration 1 [-]

OR	cpe:2.3:o:microsoft:windows_2000:-:::::::*
	cpe:2.3:o:microsoft:windows_95:-:::::::*
	cpe:2.3:o:microsoft:windows_98:-:::::::*

References

Link	Resource
http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html	Broken Link Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0264.html	Mailing List Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0269.html	Mailing List Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0271.html	Mailing List Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0274.html	Mailing List Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0276.html	Mailing List Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0289.html	Mailing List Third Party Advisory
http://seclists.org/bugtraq/2001/Jan/0298.html	Mailing List Third Party Advisory
http://www.securityfocus.com/bid/2221	Third Party Advisory VDB Entry
https://www2.sans.org/reading_room/whitepapers/win2k/185.php	Broken Link Exploit

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2022-10-03T16:23:43

Updated: 2022-10-03T16:23:43

Reserved: 2022-10-03T00:00:00

Link: CVE-1999-1593

JSON object: View

NVD Information

Status : Analyzed

Published: 2009-01-15T01:30:00.407

Modified: 2020-01-10T20:07:30.563

Link: CVE-1999-1593

JSON object: View

Redhat Information

No data.

CWE

CWE-59

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-10-03T16:23:43", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "19990302 NT Domain DoS and Security Exploit with SAMBA Server", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"name": "20010118 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"tags": ["x_refsource_MISC"], "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}, {"name": "2221", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/2221"}, {"name": "20010117 Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"name": "20010119 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"name": "20010118 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"name": "20010117 Re: Invalid WINS entries", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-1999-1593", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "19990302 NT Domain DoS and Security Exploit with SAMBA Server", "refsource": "NTBUGTRAQ", "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"name": "20010118 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"name": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php", "refsource": "MISC", "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}, {"name": "2221", "refsource": "BID", "url": "http://www.securityfocus.com/bid/2221"}, {"name": "20010117 Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"name": "20010119 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"name": "20010117 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"name": "20010118 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"name": "20010117 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"name": "20010117 Re: Invalid WINS entries", "refsource": "BUGTRAQ", "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-1999-1593", "datePublished": "2022-10-03T16:23:43", "dateReserved": "2022-10-03T00:00:00", "dateUpdated": "2022-10-03T16:23:43", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*", "matchCriteriaId": "685F1981-EA61-4A00-89F8-A748A88962F8", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_95:-:*:*:*:*:*:*:*", "matchCriteriaId": "31B44B93-D27B-4F6A-B3D4-9FF95AD8287E", "vulnerable": true}, {"criteria": "cpe:2.3:o:microsoft:windows_98:-:*:*:*:*:*:*:*", "matchCriteriaId": "40FC681A-7B85-4495-8DCC-C459FE7E2F13", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable."}, {"lang": "es", "value": "Windows Internet Naming Service (WINS), permite atacantes remotos provocar una denegaci\u00f3n de servicio (p\u00e9rdida de conexi\u00f3n) o el robo de credenciales a trav\u00e9s de una inscripci\u00f3n 1Ch que hace que WINS se cambie de controlador de dominio para apuntar a un servidor malicioso. NOTA: este problema puede estar limitado cuando se usan clientes Windows 95/98, o si el primer controlador de dominio no est\u00e1 disponible."}], "id": "CVE-1999-1593", "lastModified": "2020-01-10T20:07:30.563", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.6, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-01-15T01:30:00.407", "references": [{"source": "cve@mitre.org", "tags": ["Broken Link", "Third Party Advisory"], "url": "http://archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0264.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0269.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0271.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0274.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0276.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0289.html"}, {"source": "cve@mitre.org", "tags": ["Mailing List", "Third Party Advisory"], "url": "http://seclists.org/bugtraq/2001/Jan/0298.html"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/2221"}, {"source": "cve@mitre.org", "tags": ["Broken Link", "Exploit"], "url": "https://www2.sans.org/reading_room/whitepapers/win2k/185.php"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-59"}], "source": "nvd@nist.gov", "type": "Primary"}]}