CVE-1999-1365

Name of the Vulnerable Software and Affected Versions: Windows NT (affected versions not specified)

Description: The issue allows local users to bypass access restrictions or gain privileges by placing a Trojan horse program into the root directory, which is writable by default. This is because Windows NT searches a user's home directory before other directories to find critical programs.

Recommendations: For Windows NT, consider restricting write access to the root directory to prevent unauthorized placement of Trojan horse programs. As a temporary workaround, monitor the root directory for suspicious files, especially those with names similar to critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE, or TASKMGR.EXE.