Test ID:	1.3.6.1.4.1.25623.1.0.101015
Category:	Windows : Microsoft Bulletins
Title:	Microsoft Windows NetBIOS Information Disclosure Vulnerability (MS03-034) - Active Check
Summary:	Microsoft Windows is prone to an information disclosure; vulnerability.
Description:	Summary: Microsoft Windows is prone to an information disclosure vulnerability. Vulnerability Insight: Under certain conditions, the response to a NetBT Name Service query may, in addition to the typical reply, contain random data from the target system's memory. This data could, for example, be a segment of HTML if the user on the target system was using an Internet browser, or it could contain other types of data that exist in memory at the time that the target system responds to the NetBT Name Service query. Vulnerability Impact: An attacker could seek to exploit this vulnerability by sending a NetBT Name Service query to the target system and then examine the response to see if it included any random data from that system's memory. Solution: Microsoft has released patches to fix this issue. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0661 CERT/CC vulnerability note: VU#989932 http://www.kb.cert.org/vuls/id/989932 Microsoft Security Bulletin: MS03-034 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-034 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3483
Copyright	Copyright (C) 2009 Christian Eric Edjenguele

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.