CVE-2002-0367 in Windowsالمعلومات

الملخص

بحسب MITRE

smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

إفشاء

25/06/2002

الاعتدال

تمت الموافقة

إدخال

VDB-18341

CPE

جاهز

CWE

CWE-269 (مؤكد)

استغلال

تحميل

CVSS

7.8 (NVD)

EPSS

0.05188

KEV

نعم

النشاطات

منخفض جدًا

القطاع

Pharma, Insurance, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0367
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0367
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0367/

التالي ▸نظرة عامة ◂ السابق

Want to stay up to date on a daily basis?

Enable the mail alert feature now!