Lucene search

[email protected]CVE-1999-1365

HistorySep 01, 2004 - 4:00 a.m.

CVE-1999-1365

2004-09-0104:00:00

[email protected]

web.nvd.nist.gov

windows nt

privilege escalation

trojan horse

critical programs

access restrictions

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.3%

JSON

Windows NT searches a user’s home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could allow local users to bypass access restrictions or gain privileges by placing a Trojan horse program into the root directory, which is writable by default.

Affected configurations

NVD

Node

microsoftwindows_nt

CPENameOperatorVersion
microsoft:windows_ntmicrosoft windows nteq*

CPE	Name	Operator	Version
microsoft:windows_nt	microsoft windows nt	eq	*

References

marc.info/?l=ntbugtraq&m=93069418400856&w=2

marc.info/?l=ntbugtraq&m=93127894731200&w=2

www.securityfocus.com/bid/515

exchange.xforce.ibmcloud.com/vulnerabilities/2336

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

13.3%

JSON

Related for CVE-1999-1365

cvelist1 nvd1