Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0298

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2000-0298
Last Modified 10 Sep 2008 03:04:02
Published 07 Apr 2000 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2000-0298

Summary

The unattended installation of Windows 2000 with the OEMPreinstall option sets insecure permissions for the All Users and Default Users directories.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

XF - win2k-unattended-install(4278)

BID - 1758

NTBUGTRAQ - 20000407 All Users startup folder left open if unattended install and OEMP reinstall=1


Last Updated: 27 May 2016 10:35:38