CVE-2004-2176

Published: Dec 31, 2004Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

The Internet Connection Firewall (ICF) in Microsoft Windows XP SP2 is configured by default to trust sessmgr.exe, which allows local users to use sessmgr.exe to create a local listening port that bypasses the ICF access controls.

Affected (3)

Products: Microsoft: Windows Xp

Microsoft

1 product

Windows Xp

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions
Microsoft Windows Xp	All versions

References (4)

http://www.securityfocus.com/archive/1/378508

Source: cve@mitre.org

http://www.securityfocus.com/bid/11410

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/archive/1/378508

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/11410

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

Timeline

No history available yet.