Back
CVE-2000-1089
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability.
Published: Jan 9, 2001
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (2)
| Vendor | Product | Version |
|---|---|---|
| microsoft | windows_2000 | * |
| microsoft | windows_nt | 4.0 |
GitHub Security Advisory GHSA-pj32-r99j-9hr4
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands,...
References (8)
- http://www.securityfocus.com/bid/2048 Exploit, Patch, Vendor Advisory
- http://www.stake.com/research/advisories/2000/a120400-1.txt Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-094
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5623
- http://www.securityfocus.com/bid/2048 Exploit, Patch, Vendor Advisory
- http://www.stake.com/research/advisories/2000/a120400-1.txt Exploit, Patch, Vendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-094
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5623
Risk Scores
CVSS Score
10.0 / 10
EPSS Score
68.84%
Top 1% most likely to be exploited
Threat Score
60.7 / 100
Data Sources
NVD
EPSS
GitHub