CVE-2000-0933

Sažetak

The Input Method Editor (IME) in the Simplified Chinese version of Windows 2000 does not disable access to privileged functionality that should normally be restricted, which allows local users to gain privileges, aka the "Simplified Chinese IME State Recognition" vulnerability.

Reference

http://www.securityfocus.com/bid/1729
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-069
https://exchange.xforce.ibmcloud.com/vulnerabilities/5301

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

12-10-2018 - 21:29

Objavljeno

19-12-2000 - 05:00