Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explorer from Office 97 applications (such as Word), installing software into the TEMP directory, and changing the name to that for an allowed application, such as Winword.exe.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft WinNT ZAK 绕过安全策略漏洞
Vulnerability Description
ZAK(Zero Administration Kit)是WinNT的管理工具。 ZAK存在绕过程序执行限制策略漏洞。 在Appstation模式下,用户可以从Office 97应用程序(例如Word)中启动Explorer,将软件安装到TEMP目录内,并将名称改为诸如Winword.exe等允许运行的程序名称,从而绕过"Run only allowed apps"策略。
CVSS Information
N/A
Vulnerability Type
N/A