PT-1999-1685 · Microsoft · Windows Nt
Publicado
1999-06-28
·
Atualizado
2017-10-26
·
CVE-1999-1365
CVSS v2.0
7.2
Alta
| Vetor | AV:L/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Windows NT (affected versions not specified)
Description:
The issue allows local users to bypass access restrictions or gain privileges by placing a Trojan horse program into the root directory, which is writable by default. This is because Windows NT searches a user's home directory before other directories to find critical programs.
Recommendations:
For Windows NT, consider restricting write access to the root directory to prevent unauthorized placement of Trojan horse programs. As a temporary workaround, monitor the root directory for suspicious files, especially those with names similar to critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE, or TASKMGR.EXE.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Windows Nt