Unrated severityNVD Advisory· Published Jan 15, 2009· Updated Apr 23, 2026

CVE-1999-1593

Description

Windows Internet Naming Service (WINS) allows remote attackers to cause a denial of service (connectivity loss) or steal credentials via a 1Ch registration that causes WINS to change the domain controller to point to a malicious server. NOTE: this problem may be limited when Windows 95/98 clients are used, or if the primary domain controller becomes unavailable.

Affected products

Microsoft/Windows 2000
cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*
Microsoft/Windows 95
cpe:2.3:o:microsoft:windows_95:-:*:*:*:*:*:*:*
Microsoft/Windows 98
cpe:2.3:o:microsoft:windows_98:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www2.sans.org/reading_room/whitepapers/win2k/185.phpnvdBroken LinkExploit
archives.neohapsis.com/archives/ntbugtraq/1998-1999/msg00371.htmlnvdBroken LinkThird Party Advisory
seclists.org/bugtraq/2001/Jan/0264.htmlnvdMailing ListThird Party Advisory
seclists.org/bugtraq/2001/Jan/0269.htmlnvdMailing ListThird Party Advisory
seclists.org/bugtraq/2001/Jan/0271.htmlnvdMailing ListThird Party Advisory
seclists.org/bugtraq/2001/Jan/0274.htmlnvdMailing ListThird Party Advisory
seclists.org/bugtraq/2001/Jan/0276.htmlnvdMailing ListThird Party Advisory
seclists.org/bugtraq/2001/Jan/0289.htmlnvdMailing ListThird Party Advisory
seclists.org/bugtraq/2001/Jan/0298.htmlnvdMailing ListThird Party Advisory
www.securityfocus.com/bid/2221nvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000