Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1238

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2001-1238
Last Modified 05 Sep 2008 04:26:02
Published 16 Jul 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-1238

Summary

Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2000 Terminal Services


References

XF - win2k-taskmanager-unkillable-process(6919)

BID - 3033

BUGTRAQ - 20010716 W2k: Unkillable Applications


Last Updated: 27 May 2016 10:36:35