Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0016

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2001-0016
Last Modified 05 Sep 2008 04:23:03
Published 12 Mar 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0016

Summary

NTLM Security Support Provider (NTLMSSP) service does not properly check the function number in an LPC request, which could allow local users to gain administrator level access.

Vulnerable Systems

Operating System

  • Microsoft Windows Nt 4.0


References

MS - MS01-008

BINDVIEW - 20010207 Local promotion vulnerability in NT4's NTLM Security Support Provider

XF - ntlm-ssp-elevate-privileges(6076)

BID - 2348


Last Updated: 27 May 2016 10:36:06