CVE-1999-0995

CVSS 2.0 Score 7.8 of 10 (high)

Details

Published Dec 16, 1999
Updated: Nov 7, 2023
CWE ID 20

Summary

CVE-1999-0995 is a vulnerability affecting the Windows NT Local Security Authority (LSA) service. This issue allows remote attackers to cause a denial of service by providing malformed Security Identifier (SID) requests to the LsaLookupSids function. By exploiting this flaw, attackers can overload the function and prevent it from processing legitimate requests, resulting in a service outage. This vulnerability can lead to significant disruptions if exploited, making it a potential threat to organizations using vulnerable Windows NT systems.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Microsoft Windows NT

Affected Vendors

  • Microsoft