Remote Desktop Sharing Vulnerability: Session Hijacking via Logoff/Shutdown Sequences

Remote Desktop Sharing Vulnerability: Session Hijacking via Logoff/Shutdown Sequences

CVE-2002-1150 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The Remote Desktop Sharing (RDS) Screen Saver Protection capability for Microsoft NetMeeting 3.01 through SP2 (4.4.3396) allows attackers with physical access to hijack remote sessions by entering certain logoff or shutdown sequences (such as CTRL-ALT-DEL) and canceling out of the resulting user confirmation prompts, such as when the remote user is editing a document.

Learn more about our Cis Benchmark Audit For Desktop Software.