7.8

CVE-2002-0367

Warning
Exploit

smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.

Data is provided by the National Vulnerability Database (NVD)
MicrosoftWindows 2000 Version-
MicrosoftWindows Nt Version4.0
MicrosoftWindows Nt Version4.0 Update- SwEditionterminal_server

03.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Microsoft Windows Privilege Escalation Vulnerability

Vulnerability

smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges.

Description

Apply updates per vendor instructions.

Required actions
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 1.83% 0.823
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

http://www.iss.net/security_center/static/8462.php
Patch
Vendor Advisory
Broken Link
http://www.securityfocus.com/archive/1/262074
Patch
Third Party Advisory
Vendor Advisory
Exploit
Broken Link
VDB Entry
http://www.securityfocus.com/archive/1/264441
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/archive/1/264927
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/bid/4287
Third Party Advisory
Broken Link
VDB Entry