The DCOM client in Windows 2000 before SP3 does not properly clear memory before sending an "alter context" request, which may allow remote malicious users to obtain sensitive information by sniffing the session.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows 2000 |