CVE-1999-1317

Опубликовано: 31 дек. 1999

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the ?? object folder using a different case letter (upper or lower) to point to a different device.

Ссылки

http://marc.info/?l=ntbugtraq&m=92127046701349&w=2
http://marc.info/?l=ntbugtraq&m=92162979530341&w=2
http://support.microsoft.com/support/kb/articles/q222/1/59.asp
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7398
http://marc.info/?l=ntbugtraq&m=92127046701349&w=2
http://marc.info/?l=ntbugtraq&m=92162979530341&w=2
http://support.microsoft.com/support/kb/articles/q222/1/59.asp
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7398

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:microsoft:windows_nt:*:sp4:*:*:*:*:*:*

Версия до 4.0 (включая)

EPSS

Процентиль: 73%

0.00781

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fgh9-68h7-45xw

github

почти 4 года назад

Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device.