CVE-2002-2401

2007-11-0117:00:00

mitre

www.cve.org

ntvdm

windows

16-bit

executable files

permissions

AI Score

Confidence

High

EPSS

Percentile

10.7%

JSON

NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs.

References

archives.neohapsis.com/archives/bugtraq/2002-09/0211.html

support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3B319458

www.abtrusion.com/msexe16.asp

www.iss.net/security_center/static/10132.php

www.securityfocus.com/bid/5740