Lucene search
+L

40 matches found

cve
cve
added 2004/07/14 4:0 a.m.85 views

CVE-2004-0213

CVE-2004-0213 - Windows 2000 Utility Manager Privilege Elevation : The flaw occurs when Utility Manager launches winhlp32.exe with Local System privileges. A locally authenticated user can exploit a Shatter-style sequence by sending crafted Windows messages to Utility Manager to trigger winhlp32 ...

7.8CVSS7.6AI score0.21261EPSS
Exploits0References6Affected Software1
cvelist
cvelist
added 2004/07/14 4:0 a.m.40 views

CVE-2004-0213

Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context...

7.4AI score0.21261EPSS
Exploits0References6
cert
cert
added 2004/07/14 12:0 a.m.41 views

Microsoft Windows Utility Manager launches applications with system privileges

Overview The Microsoft Windows 2000 Utility Manager allows authenticated local users to launch applications with SYSTEM privileges. Description The Microsoft Windows 2000 Utility Manager is a program that permits users to monitor and launch various accessibility applications. This program contain...

7.8CVSS7.5AI score0.21261EPSS
Exploits0References1
zdt
zdt
added 2004/07/14 12:0 a.m.16 views

MS Windows 2000 Utility Manager Privilege Elevation Exploit (MS04-019)

Exploit for unknown platform in category local exploits ====================================================================== MS Windows 2000 Utility Manager Privilege Elevation Exploit MS04-019 ====================================================================== //by Cesar Cerrudo sqlsec at...

6.8AI score
Exploits0
ptsecurity
ptsecurity
added 2004/07/14 12:0 a.m.5 views

PT-2004-1378 · Microsoft · Winhlp32.Exe +2

Name of the Vulnerable Software and Affected Versions: Windows 2000 Description: The issue allows local users to gain system privileges via a "Shatter" style attack. This is achieved by sending a Windows message to Utility Manager, which launches winhlp32.exe with raised privileges. The attack...

7.8CVSS6AI score0.21261EPSS
Exploits0References11
exploitpack
exploitpack
added 2004/07/14 12:0 a.m.10 views

Microsoft Windows Server 2000 - Utility Manager Privilege Escalation (MS04-019)

Microsoft Windows Server 2000 - Utility Manager Privilege Escalation MS04-019 //by Cesar Cerrudo sqlsec at yahoo.com //Local elevation of priviliges exploit for Windows 2K Utility Manager second one!!!! //Gives you a shell with system privileges //If you have problems try changing Sleep values...

0.2AI score
Exploits0
securityvulns
securityvulns
added 2004/07/14 12:0 a.m.73 views

Microsoft Window Utility Manager Local Elevation of Privileges

Microsoft Window Utility Manager Local Elevation of Privileges July 13, 2004 Credit: This vulnerability was researched and discovered by Cesar Cerrudo. Risk Level: High Summary: A local elevation of privileges exists in the Windows Utility Manager which allows any user to take complete control ov...

7.2CVSS0.2AI score0.27422EPSS
Exploits0
exploitdb
exploitdb
added 2004/07/14 12:0 a.m.53 views

Microsoft Windows Server 2000 - Utility Manager Privilege Escalation (MS04-019)

//by Cesar Cerrudo sqlsec at yahoo.com //Local elevation of priviliges exploit for Windows 2K Utility Manager second one!!!! //Gives you a shell with system privileges //If you have problems try changing Sleep values. include "stdio.h" include "windows.h" int mainint argc, char argv HWND lHandle,...

7.4AI score
Exploits0
symantec
symantec
added 2004/07/13 12:0 a.m.18 views

Microsoft Windows Utility Manager Local Privilege Escalation Variant Vulnerability

Description Microsoft Utility Manager is prone to a local privilege escalation vulnerability. It is reported that a local user may influence the Utility Manager into executing an attacker-supplied application with elevated privileges. The cause of this issue is that the Utility Manager will attem...

0.4AI score
Exploits0References3Affected Software1
cvelist
cvelist
added 2004/04/16 4:0 a.m.39 views

CVE-2003-0908

The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialo...

7.5AI score0.27422EPSS
Exploits0References10
cve
cve
added 2004/04/16 4:0 a.m.68 views

CVE-2003-0908

CVE-2003-0908 describes a local privilege-elevation issue in Windows 2000 where Utility Manager can be coerced to launch winhlp32.exe with SYSTEM privileges via crafted Windows messages targeting the Help button, enabling arbitrary code execution (as shown in a Shatter-style vector). Connected so...

7.2CVSS7.5AI score0.27422EPSS
Exploits0References10Affected Software1
securityvulns
securityvulns
added 2004/04/15 12:0 a.m.62 views

[VulnWatch] [SHATTER Team Security Alert] Microsoft Windows Utility Manager Vulnerability

Microsoft Windows Utility Manager Vulnerability April 13, 2004 Risk Level: High Summary: A local elevation of privileges vulnerability exists on the Windows Utility Manager that allows to any user to take complete control over the operating system. Versions Affected: All products in the Windows...

7.2CVSS0.7AI score0.27422EPSS
Exploits0
securityvulns
securityvulns
added 2004/04/15 12:0 a.m.32 views

[Full-Disclosure] Utility Manager - Failure to drop system privileges

======================================================================== = Utility Manager - Failure to drop system privileges = = MS Bulletin posted: April 13, 2004 = http://www.microsoft.com/technet/security/Bulletin/MS04-011.mspx = = Affected Software: = Microsoft Windows 2000 = = Public...

0.8AI score
Exploits0
zdt
zdt
added 2004/04/15 12:0 a.m.29 views

MS Windows Utility Manager Local SYSTEM Exploit (MS04-011)

Exploit for unknown platform in category local exploits ========================================================== MS Windows Utility Manager Local SYSTEM Exploit MS04-011 ========================================================== // By Cesar Cerrudo cesar appsecinc com // Local elevation of...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2004/04/15 12:0 a.m.18 views

Microsoft Windows Utility Manager - Local Privilege Escalation (MS04-011)

Microsoft Windows Utility Manager - Local Privilege Escalation MS04-011 // By Cesar Cerrudo cesar appsecinc com // Local elevation of priviliges exploit for Windows Utility Manager // Gives you a shell with system privileges // If you have problems try changing Sleep values. include include inclu...

0.8AI score
Exploits0
exploitdb
exploitdb
added 2004/04/15 12:0 a.m.67 views

Microsoft Windows Utility Manager - Local Privilege Escalation (MS04-011)

// By Cesar Cerrudo cesar appsecinc com // Local elevation of priviliges exploit for Windows Utility Manager // Gives you a shell with system privileges // If you have problems try changing Sleep values. include include include include int mainint argc, char argv HWND lHandle, lHandle2; POINT...

7.4AI score
Exploits0
cert
cert
added 2004/04/14 12:0 a.m.55 views

Microsoft Windows Utility Manager contains vulnerability in the way it launches applications

Overview Microsoft Windows Utility Manager contains a vulnerability that may permit an authenticated user to launch applications with elevated privileges. Description Microsoft Windows 2000's Utility Manager is a program that permits users to monitor and launch various accessibility applications....

7.2CVSS7.1AI score0.27422EPSS
Exploits0References1
nessus
nessus
added 2003/07/13 12:0 a.m.38 views

MS03-025: Flaw in Windows Message Handling through Utility Manager Could Enable Privilege Elevation (822679)

The remote host runs a version of Windows that has a flaw in the way the utility manager handles Windows messages. As a result, it is possible for a local user to gain additional privileges on this host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11789;...

4.6CVSS5.5AI score0.01597EPSS
Exploits0References2
cvelist
cvelist
added 2003/07/10 4:0 a.m.28 views

CVE-2003-0350

The control for listing accessibility options in the Accessibility Utility Manager on Windows 2000 ListView does not properly handle Windows messages, which allows local users to execute arbitrary code via a "Shatter" style message to the Utility Manager that references a user-controlled callback...

7.2AI score0.01597EPSS
Exploits0References7
securityvulns
securityvulns
added 2003/07/10 12:0 a.m.35 views

Microsoft Utility Manager Local Privilege Escalation

NGSSoftware Insight Security Research Advisory Name: Microsoft Utility Manager Local Privilege Escalation Systems Affected: Windows 2000 SP3 Severity: Medium Risk Vendor URL: http://www.microsoft.com Authors: Chris Paget [email protected] Chris Anley [email protected] Sherief Hammad...

Exploits0
Rows per page
Query Builder