CVE DATABASE / CVE-2000-0979
CVE-2000-0979
CVSS 6.4 · MEDIUM
Summary
File and Print Sharing service in Windows 95, Windows 98, and Windows Me does not properly check the password for a file share, which allows remote attackers to bypass share access controls by sending a 1-byte password that matches the first character of the real password, aka the "Share Level Password" vulnerability.
CVSS 2.0 breakdown
| Base score | 6.4 (MEDIUM) |
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:N |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | PARTIAL |
| Integrity | PARTIAL |
| Availability | NONE |
Affected products
Microsoft windows 95Microsoft windows 98Microsoft windows 98seMicrosoft windows me
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://marc.info/?l=bugtraq&m=97147777618139&w=2
- http://www.securityfocus.com/bid/1780
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-072
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5395
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A996
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.