CVE-2001-0016

Sažetak

NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an LPC request, which could allow local users to gain administrator level access.

Reference

http://razor.bindview.com/publish/advisories/adv_NTLMSSP.html
http://www.securityfocus.com/bid/2348
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-008
https://exchange.xforce.ibmcloud.com/vulnerabilities/6076

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

12-10-2018 - 21:30

Objavljeno

12-03-2001 - 05:00