7.8

CVE-2002-0367

Warnung
Exploit

smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftWindows 2000 Version-
MicrosoftWindows Nt Version4.0
MicrosoftWindows Nt Version4.0 Update- SwEditionterminal_server

03.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Microsoft Windows Privilege Escalation Vulnerability

Schwachstelle

smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.83% 0.823
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-269 Improper Privilege Management

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

http://www.iss.net/security_center/static/8462.php
Patch
Vendor Advisory
Broken Link
http://www.securityfocus.com/archive/1/262074
Patch
Third Party Advisory
Vendor Advisory
Exploit
Broken Link
VDB Entry
http://www.securityfocus.com/archive/1/264441
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/archive/1/264927
Third Party Advisory
Broken Link
VDB Entry
http://www.securityfocus.com/bid/4287
Third Party Advisory
Broken Link
VDB Entry