Описание
Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager.
Ссылки
- Broken LinkThird Party AdvisoryVDB EntryVendor Advisory
- Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
- Broken LinkThird Party AdvisoryVDB EntryVendor Advisory
- Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
EPSS
Процентиль: 73%
0.00799
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-178
Связанные уязвимости
CVSS3: 7.8
github
больше 3 лет назад
Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager.
EPSS
Процентиль: 73%
0.00799
Низкий
7.8 High
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-178