CVE-2002-1184

Sažetak

The system root folder of Microsoft Windows 2000 has default permissions of Everyone group with Full access (Everyone:F) and is in the search path when locating programs during login or application launch from the desktop, which could allow attackers to gain privileges as other users via Trojan horse programs.

Reference

http://www.securityfocus.com/bid/5415
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-064
https://exchange.xforce.ibmcloud.com/vulnerabilities/9779

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

30-04-2019 - 14:27

Objavljeno

12-11-2002 - 05:00