9 lines
No EOL
653 B
Text
9 lines
No EOL
653 B
Text
source: https://www.securityfocus.com/bid/4287/info
|
|
|
|
A vulnerability in Microsoft Windows 2000 and NT 4 could allow a user to gain SYSTEM-level privileges on the local host.
|
|
|
|
The debugging subsystem, which is available to all users, may be used to create duplicate handles to a privileged process. This may allow an application with minimal privileges to execute arbitrary code with the privileges of the process that is accessed.
|
|
|
|
05/06/2002: There have been reports of a mass-mailing worm that exploits this vulnerability using the proof-of-concept exploit.
|
|
|
|
https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/21344.zip |