PT-2001-1244 · Microsoft · Windows Nt 4.0
Published
2001-02-12
·
Updated
2024-01-26
·
CVE-2001-0006
CVSS v2.0
2.1
Low
| Vector | AV:L/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions:
Windows NT 4.0
Description:
The issue is related to the Winsock2ProtocolCatalogMutex mutex having inappropriate Everyone/Full Control permissions. This allows local users to modify the permissions to "No Access" and disable Winsock network connectivity, resulting in a denial of service.
Recommendations:
For Windows NT 4.0, restrict access to the Winsock2ProtocolCatalogMutex mutex to prevent local users from modifying its permissions and disabling network connectivity.
Exploit
Fix
Incorrect Permission
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Windows Nt 4.0