CVE-1999-1358

EPSS 0.34%
Published 31.12.1999 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

When an administrator in Windows NT or Windows 2000 changes a user policy, the policy is not properly updated if the local ntconfig.pol is not writable by the user, which could allow local users to bypass restrictions that would otherwise be enforced by the policy, possibly by changing the policy file to be read-only.

Affected products Warnungen 0 Metrics 2 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000

Microsoft ≫ Windows Nt

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.34%	0.565

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

http://support.microsoft.com/support/kb/articles/q157/6/73.asp

Patch

Vendor Advisory

http://www.iss.net/security_center/static/7400.php

https://nvd.nist.gov/vuln/detail/CVE-1999-1358

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-1358

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-1358

EUVD