|
|
Vulnerability Assessment & Network Security Forums |
|||||||||
|
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Windows : Microsoft Bulletins >> Flaw in Network Connection Manager Could Enable Privilege Elevation (Q326886) Vulnerability Assessment Details
|
Flaw in Network Connection Manager Could Enable Privilege Elevation (Q326886) |
||
|
Checks for MS Hotfix Q326886, Network Elevated Privilege Detailed Explanation for this Vulnerability Assessment Summary : A local user can elevate his rights. Description : The remote host contains a flaw in the Network Connection Manager which may permit a local user to elevate his rights. To exploit this vulnerability a user need to send a specially crafted code to the Network Manager handle to execute arbitrary code with the rights of the SYSTEM. Solution : Microsoft has released a set of patches for Windows 2000 : http://www.microsoft.com/technet/security/bulletin/ms02-042.mspx Network Security Threat Level: Medium / CVSS Base Score : 5 (AV:R/AC:L/Au:NR/C:N/A:C/I:N/B:A) Networks Security ID: 5480 Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security |
||
|
Workstation Components, Memory |
|
||
|
No Discussions have been posted on this vulnerability. |