← CVECheck
HomeVulnerabilities

CVE-2001-0860 — HIGH severity vulnerability (Terminal Services Manager MMC in Windows 2000 and XP trusts)

Terminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through a Network Address Translation (NAT).

CVE IDCVE-2001-0860
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2001-12-06
Last modified2026-04-16
DescriptionTerminal Services Manager MMC in Windows 2000 and XP trusts the Client Address (IP address) that is provided by the client instead of obtaining it from the packet headers, which allows clients to spoof their public IP address, e.g. through a Network Address Translation (NAT).
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →