Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0015

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0015
Last Modified 05 Sep 2008 04:23:03
Published 12 Mar 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0015

Summary

Network Dynamic Data Exchange (DDE) in Windows 2000 allows local users to gain SYSTEM privileges via a "WM_COPYDATA" message to an invisible window that is running with the privileges of the WINLOGON process.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

MS - MS01-007

ATSTAKE - A020501-1

XF - win-dde-elevate-privileges(6062)

BID - 2341


Last Updated: 27 May 2016 10:36:06