Vulnerability Description
smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | - |
| Microsoft | Windows Nt | 4.0 |
Related Weaknesses (CWE)
References
- http://marc.info/?l=ntbugtraq&m=101614320402695&w=2Mailing List
- http://www.iss.net/security_center/static/8462.phpBroken LinkPatchVendor Advisory
- http://www.securityfocus.com/archive/1/262074Broken LinkExploitPatch
- http://www.securityfocus.com/archive/1/264441Broken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/archive/1/264927Broken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/4287Broken LinkThird Party AdvisoryVDB Entry
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-02PatchVendor Advisory
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Broken Link
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Broken Link
- http://marc.info/?l=ntbugtraq&m=101614320402695&w=2Mailing List
- http://www.iss.net/security_center/static/8462.phpBroken LinkPatchVendor Advisory
- http://www.securityfocus.com/archive/1/262074Broken LinkExploitPatch
- http://www.securityfocus.com/archive/1/264441Broken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/archive/1/264927Broken LinkThird Party AdvisoryVDB Entry
- http://www.securityfocus.com/bid/4287Broken LinkThird Party AdvisoryVDB Entry
FAQ
What is CVE-2002-0367?
CVE-2002-0367 is a vulnerability with a CVSS score of 7.8 (HIGH). smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges ...
How severe is CVE-2002-0367?
CVE-2002-0367 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0367?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows Nt.