VDB

CVE-2002-0863

CVE-2002-0863 PUBLISHED CVSS 5 MEDIUM

Remote Data Protocol (RDP) version 5.0 in Microsoft Windows 2000 and RDP 5.1 in Windows XP does not encrypt the checksums of plaintext session data, which could allow a remote attacker to determine the contents of encrypted sessions via sniffing, aka "Weak Encryption in RDP Protocol."

EPSS 15.94% · 94.9th percentile

Risk Scores

CVSS 2.0
5
EPSS Score
15.94%
94.9th percentile

Affected Products

VendorProductVersions
n/an/an/a
microsoft.net_windows_serverbeta3
microsoftwindows_nt4.0, 4.0, 4.0
microsoftwindows_2000_terminal_services
microsoftwindows_xp
microsoftwindows_2000

Timeline

  • Oct 1, 2002 CVE Published
  • Feb 4, 2022 EPSS Score
  • Apr 30, 2022 CVE Updated
  • May 20, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
  • Mar 7, 2023 EPSS Score
  • Apr 3, 2023 EPSS Score
  • Jul 17, 2023 EPSS Score
  • Jul 30, 2023 EPSS Score
  • Oct 30, 2023 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›