Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3443

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2006-3443
Last Modified 07 Mar 2011 09:38:39
Published 08 Aug 2006 09:04:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2006-3443

Summary

Untrusted search path vulnerability in Winlogon in Microsoft Windows 2000 SP4, when SafeDllSearchMode is disabled, allows local users to gain privileges via a malicious DLL in the UserProfile directory, aka "User Profile Elevation of Privilege Vulnerability."

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

CERT-VN - VU#337244

MS - MS06-051

SECUNIA - 21417

VUPEN - ADV-2006-3216

BID - 19375

SECTRACK - 1016662


Last Updated: 27 May 2016 10:43:00