Lucene search

[email protected]CVE-2000-0663

HistoryJul 25, 2000 - 4:00 a.m.

CVE-2000-0663

2000-07-2504:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0663

windows nt

windows 2000

shell path vulnerability

arbitrary command execution

7.4 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

11.8%

JSON

The registry entry for the Windows Shell executable (Explorer.exe) in Windows NT and Windows 2000 uses a relative path name, which allows local users to execute arbitrary commands by inserting a Trojan Horse named Explorer.exe into the %Systemdrive% directory, aka the “Relative Shell Path” vulnerability.

CPENameOperatorVersion
microsoft:windows_ntmicrosoft windows nteq4.0
microsoft:windows_2000microsoft windows 2000eq*

CPE	Name	Operator	Version
microsoft:windows_nt	microsoft windows nt	eq	4.0
microsoft:windows_2000	microsoft windows 2000	eq	*

References

www.microsoft.com/technet/support/kb.asp?ID=269049

www.securityfocus.com/bid/1507

docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-052

exchange.xforce.ibmcloud.com/vulnerabilities/5040

7.4 High

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

11.8%

JSON

Related for CVE-2000-0663

nessus1