Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The system root folder of Microsoft Windows 2000 has default permissions of Everyone group with Full access (Everyone:F) and is in the search path when locating programs during login or application launch from the desktop, which could allow attackers to gain privileges as other users via Trojan horse programs.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows 2000/NT路径优先漏洞(MS02-064)
Vulnerability Description
Micorsoft Windows是流行的视窗操作系统,Micorsoft Windows当应用程序的绝对路径没有指定的情况下会使用Path系统变量进行搜索。 Micorsoft Windows在当应用程序没有指定绝对路径时搜索方法存在缺陷,本地攻击者可以利用这个漏洞在系统中放置木马,并以其他同系统登录用户安全权限执行。 在Windows 2000中,默认对系统ROOT文件夹(一般是C:\)提供Everyone组全部访问权限(Everyone:F)。在多数情况下,系统ROOT没有包含在搜索路径中。可是,在
CVSS Information
N/A
Vulnerability Type
N/A