MS05-007: Vulnerability in Windows Could Allow Information Disclosure (888302)

Medium Nessus Plugin ID 16331


It is possible to disclose information about the remote host.


The remote version of Windows contains a flaw that could allow an attacker to cause it to disclose information over the use of a named pipe through a NULL session.

An attacker may exploit this flaw to gain more knowledge about the remote host.


Microsoft has released a patch for Windows XP.

See Also

Plugin Details

Severity: Medium

ID: 16331

File Name: smb_nt_ms05-007.nasl

Version: $Revision: 1.31 $

Type: local

Agent: windows

Published: 2005/02/09

Modified: 2017/08/09

Dependencies: 13855, 57033

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2005/02/08

Vulnerability Publication Date: 2005/02/08

Reference Information

CVE: CVE-2005-0051

BID: 12486

OSVDB: 13596

MSFT: MS05-007

CERT: 939074

MSKB: 888302