Microsoft Windows 2000 / NT 4.0 - Process Handle Local Privilege Elevation Vulnerability

2002-03-13T00:00:00
ID EDB-ID:21344
Type exploitdb
Reporter EliCZ
Modified 2002-03-13T00:00:00

Description

Microsoft Windows 2000 / NT 4.0 Process Handle Local Privilege Elevation Vulnerability. CVE-2002-0367. Local exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/4287/info

A vulnerability in Microsoft Windows 2000 and NT 4 could allow a user to gain SYSTEM-level privileges on the local host.

The debugging subsystem, which is available to all users, may be used to create duplicate handles to a privileged process. This may allow an application with minimal privileges to execute arbitrary code with the privileges of the process that is accessed.

05/06/2002: There have been reports of a mass-mailing worm that exploits this vulnerability using the proof-of-concept exploit. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/sploits/21344.zip