Microsoft Windows Logon Screensaver Local Privilege Escalation Vulnerability

Discussion in 'Software' started by NICK ADSL UK, Nov 24, 2004.

  1. NICK ADSL UK

    NICK ADSL UK MajorGeeks Forum Administrator Staff Member

    QUOTE
    The Microsoft Windows default logon screensaver is reported prone to a local privilege escalation vulnerability. It is reported that the screensaver is started with SYSTEM privileges on Microsoft Windows NT, 2000 and XP computers.

    A local attacker that has sufficient privileges to modify or replace the default logon screensaver, or that had sufficient privileges to modify registry entries that relate to the logon screensaver, may exploit this vulnerability to attain local SYSTEM privileges. The default configuration for the software may expose this vulnerability on affected platforms due to lax permissions on the screensaver executable. This could vary depending on the host platform.

    http://www.securityfocus.com/bid/11711/discussion/
     
    NICK ADSL UK, Nov 24, 2004
    #1

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds