{"vuid":"VU#367077","idnumber":"367077","name":"Microsoft ISA Server 2000 vulnerable to privilege escalation via \"NETBIOS\" connection","keywords":["Microsoft","ISA Server 2000","privilege escalation","NETBIOS connection","predefined packet filter","MS05-034"],"overview":"Microsoft Internet Security and Acceleration Server 2000 contains an elevation of privilege vulnerability that allows an attacker to create unintended NetBIOS service connections within the affected ISA Server host.","clean_desc":"Microsoft ISA Server 2000 contains firewall, virtual private networking, and web caching solutions. ISA Server 2000 contains a flaw in NetBIOS handling that allows an attacker to connect to NetBIOS services on the ISA Server 2000 host.","impact":"A remote, unauthenticated attacker may be able to connect to NetBIOS services on the affected ISA Server if the ISA Server host has enabled the NetBIOS (all) predefined packet filter.","resolution":"Apply An Update Please see Microsoft Security Bulletin MS05-034 for more information, such as workarounds and patches.","workarounds":"","sysaffected":"","thanks":"Thanks to Microsoft for information on this issue, who in turn credit Steve Orrin of \nWatchfire\n with reporting this vulnerability.","author":"This document was written by Ken MacInnis.","public":["http://www.microsoft.com/technet/security/bulletin/MS05-034.mspx","http://securitytracker.com/alerts/2005/Jun/1014193.html"],"cveids":["CVE-2005-1216"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2005-06-14T18:40:04Z","publicdate":"2005-06-14T00:00:00Z","datefirstpublished":"2005-06-14T20:56:48Z","dateupdated":"2005-07-06T18:00:49Z","revision":7,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"10","cam_population":"14","cam_impact":"11","cam_easeofexploitation":"10","cam_attackeraccessrequired":"15","cam_scorecurrent":"10.828125","cam_scorecurrentwidelyknown":"12.99375","cam_scorecurrentwidelyknownexploited":"21.65625","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":10.828125,"vulnote":null}