Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2002-2028

EPSS 0.79% · P74
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-2028

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The screensaver on Windows NT 4.0, 2000, XP, and 2002 does not verify if a domain account has already been locked when a valid password is provided, which makes it easier for users with physical access to conduct brute force password guessing.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
微软Windows NT不准确的登录日志漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
微软很多Windows版本具有限制和审计本地登录功能,可以定制自己的安全策略,比如多少无效登录后锁定相应帐号,并记录成功、失败次数。 设计Windows 2000系统时,一台锁定中的机器并不产生安全日志。假设某人已经知道你的口令,他/她可以利用这点登录、入侵、重新锁定,此时你无法察觉到这次入侵。 而所有版本的Windows NT在下列任一条件满足的情况下,针对一次成功登录只产生安全事件539(已锁定帐号在做无效登录)的日志,而不是应有的安全事件528(成功登录)。 1. 由于既定安全策略,一个帐号只剩一次
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2002-2028

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2002-2028

登录查看更多情报信息。

Same Patch Batch · n/a · 2005-07-14 · 176 CVEs total

CVE-2002-2032PHP-Nuke SQL_Debug调试信息泄露漏洞
CVE-2002-2021Burning Board跨站脚本执行漏洞
CVE-2002-2022Kaffe OpenVM NoClassDefFoundError格式字符串漏洞
CVE-2002-2023Shingo beep2任意文件读取漏洞
CVE-2002-2024Horde IMP 2.2.7存在路径泄露漏洞
CVE-2002-2025Lotus Domino MS-DOS设备文件名拒绝服务攻击漏洞
CVE-2002-2026BrowseFTP Client缓冲区溢出漏洞
CVE-2002-2027Database of our owlish Wisdom 安全漏洞
CVE-2002-2029Apache Win32 PHP.EXE远程文件泄露漏洞
CVE-2002-2030SQLData Enterprise Server缓冲区溢出漏洞
CVE-2002-2031Microsoft Internet Explorer 安全漏洞
CVE-2002-2037Solaris漏洞威胁Cisco Media Gateway Controller的安全
CVE-2002-2042QNX 'ptrace()'任意进程修改漏洞
CVE-2002-2041QNX RTOS PKG-Installer缓冲区溢出漏洞
CVE-2002-2040QNX RTOS phgrafx特权提升漏洞
CVE-2002-2039QNX RTOS su密码哈希泄露漏洞
CVE-2002-2038新一代的POSIX线程共享内存服务拒绝漏洞
CVE-2002-2035RealityScape MyLoginSQL注入漏洞
CVE-2002-2033Faqmanager.cgi NULL字符泄露任意文件漏洞
CVE-2002-2034John Hardin Procmail Email Sanitizer分段Mime识别漏洞

Showing top 20 of 176 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2002-2028

No comments yet

Leave a comment