Buffer Overflow in RAS Phonebook File Allows Arbitrary Code Execution

Buffer Overflow in RAS Phonebook File Allows Arbitrary Code Execution

CVE-2002-0366 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

Buffer overflow in Remote Access Service (RAS) phonebook for Windows NT 4.0, 2000, XP, and Routing and Remote Access Server (RRAS) allows local users to execute arbitrary code by modifying the rasphone.pbk file to use a long dial-up entry.

Learn more about our Cis Benchmark Audit For Server Software.