2 matches found
CVE-2001-1517
RunAs runas.exe in Windows 2000 stores cleartext authentication information in memory, which could allow attackers to obtain usernames and passwords by executing a process that is allocated the same memory page after termination of a RunAs command. NOTE: the vendor disputes this issue, saying tha...
All Users startup folder left open if unattended install and OEMP reinstall=1
About a month ago I posted the following to the win2ksecadvice list. However, I received no response. I thought I'd try again since I consider this problem to be pretty serious since it will allow any user to introduce a code stream on another user. I recently noticed a problem with Windows 2000...