Windows Debugger flaw can Lead to Elevated Privileges (Q320206)

Windows Debugger flaw can lead to elevated privileges in Windows NT 4.0, Server, Terminal Server Edition, and 2000 (Q320206

Reporter	Title	Published	Views	Family All 13
ATTACKERKB	CVE-2002-0367	25 Jun 200200:00	–	attackerkb
Circl	CVE-2002-0367	14 Jun 202321:10	–	circl
CISA KEV Catalog	Microsoft Windows Privilege Escalation Vulnerability	3 Mar 202200:00	–	cisa_kev
CVE	CVE-2002-0367	2 Apr 200305:00	–	cve
Cvelist	CVE-2002-0367	2 Apr 200305:00	–	cvelist
EUVD	EUVD-2002-0364	7 Oct 202500:30	–	euvd
Malwarebytes	CISA list of 95 new known exploited vulnerabilities raises questions	14 Mar 202211:18	–	malwarebytes
NVD	CVE-2002-0367	25 Jun 200204:00	–	nvd
OpenVAS	Windows Debugger flaw can Lead to Elevated Privileges (Q320206)	3 Nov 200500:00	–	openvas
Tenable Nessus	MS02-024: Windows Debugger flaw can Lead to Elevated Privileges (320206)	23 May 200200:00	–	nessus

# OpenVAS Vulnerability Test
# $Id: smb_nt_ms02-024.nasl 8023 2017-12-07 08:36:26Z teissa $
# Description: Windows Debugger flaw can Lead to Elevated Privileges (Q320206)
#
# Authors:
# Michael Scheidell <scheidell at secnap.net>
#
# Copyright:
# Copyright (C) 2002 Michael Scheidell
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

tag_summary = "Authentication Flaw in Windows Debugger can Lead to Elevated 
Privileges (Q320206)

Impact of vulnerability: Elevation of Privilege 

Affected Software: 

Microsoft Windows NT 4.0 
Microsoft Windows NT 4.0 Server, Terminal Server Edition 
Microsoft Windows 2000 

Recommendation: Users using any of the affected
products should install the patch immediately.

Maximum Severity Rating: Critical (locally)

See
http://www.microsoft.com/technet/security/bulletin/ms02-024.mspx";

if(description)
{
 script_id(10964);
 script_version("$Revision: 8023 $");
 script_tag(name:"last_modification", value:"$Date: 2017-12-07 09:36:26 +0100 (Thu, 07 Dec 2017) $");
 script_tag(name:"creation_date", value:"2005-11-03 14:08:04 +0100 (Thu, 03 Nov 2005)");
 script_bugtraq_id(4287);
 script_tag(name:"cvss_base", value:"7.2");
 script_tag(name:"cvss_base_vector", value:"AV:L/AC:L/Au:N/C:C/I:C/A:C");
 script_cve_id("CVE-2002-0367");
 name = "Windows Debugger flaw can Lead to Elevated Privileges (Q320206)";
 
 script_name(name);
 


 
 script_category(ACT_GATHER_INFO);
  script_tag(name:"qod_type", value:"registry");
 
 script_copyright("This script is Copyright (C) 2002 Michael Scheidell");
 family = "Windows : Microsoft Bulletins";
 script_family(family);
 
 script_dependencies("secpod_reg_enum.nasl");
 script_require_keys("SMB/Registry/Enumerated");
 script_mandatory_keys("SMB/WindowsVersion");
 script_require_ports(139, 445);
 script_tag(name : "summary" , value : tag_summary);
 exit(0);
}

include("secpod_reg.inc");

if ( hotfix_check_sp(nt:7, win2k:3) <= 0 ) exit(0);
if ( hotfix_missing(name:"Q320206") > 0 )
	security_message(get_kb_item("SMB/transport"));

07 Dec 2017 00:00Current

0.6Low risk

Vulners AI Score0.6

EPSS0.01453