Microsoft Windows NT 4.0/2000/XP NT Virtual DOS Machine ntvdm.exe access control
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 4.2 | $0-$5k | 0.00 |
Summary
A vulnerability identified as problematic has been detected in Microsoft Windows NT 4.0/2000/XP. Affected by this issue is some unknown functionality of the file ntvdm.exe of the component NT Virtual DOS Machine. Performing a manipulation results in access control. This vulnerability was named CVE-2002-2401. The attack needs to be approached locally. There is no available exploit. You should upgrade the affected component.
Details
A vulnerability classified as problematic has been found in Microsoft Windows NT 4.0/2000/XP (Operating System). This affects some unknown functionality of the file ntvdm.exe of the component NT Virtual DOS Machine. The manipulation with an unknown input leads to a access control vulnerability. CWE is classifying the issue as CWE-264. This is going to have an impact on confidentiality, and integrity. The summary by CVE is:
NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs.
The weakness was presented 12/31/2002 as not defined posting (Bugtraq). It is possible to read the advisory at archives.neohapsis.com. This vulnerability is uniquely identified as CVE-2002-2401 since 11/01/2007. The exploitability is told to be easy. Attacking locally is a requirement. A authentication is required for exploitation. Technical details of the vulnerability are known, but there is no available exploit. The attack technique deployed by this issue is T1068 according to MITRE ATT&CK.
Upgrading eliminates this vulnerability.
The vulnerability is also documented in the databases at X-Force (10132) and SecurityFocus (BID 5740†). Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Vendor
Name
Version
License
Support
- end of life (old version)
Website
- Vendor: https://www.microsoft.com/
- Product: https://www.microsoft.com/en-us/windows
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 4.4VulDB Meta Temp Score: 4.2
VulDB Base Score: 4.4
VulDB Temp Score: 4.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Access controlCWE: CWE-264
CAPEC: 🔍
ATT&CK: 🔍
Physical: Partially
Local: Yes
Remote: No
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Timeline
09/18/2002 🔍12/31/2002 🔍
12/31/2002 🔍
11/01/2007 🔍
08/07/2014 🔍
01/21/2025 🔍
Sources
Vendor: microsoft.comProduct: microsoft.com
Advisory: archives.neohapsis.com
Status: Confirmed
CVE: CVE-2002-2401 (🔍)
GCVE (CVE): GCVE-0-2002-2401
GCVE (VulDB): GCVE-100-20043
X-Force: 10132
SecurityFocus: 5740 - Windows 2000/NT/XP 16-bit Application Permission Bypass Vulnerability
Entry
Created: 08/07/2014 14:42Updated: 01/21/2025 11:52
Changes: 08/07/2014 14:42 (50), 04/07/2017 16:03 (4), 01/21/2025 11:52 (18)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.