ID CVE-2001-0045
Summary The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.
References
Vulnerable Configurations
  • Microsoft Windows NT 4.0
    cpe:2.3:o:microsoft:windows_nt:4.0
  • cpe:2.3:o:microsoft:windows_nt:terminal_server
    cpe:2.3:o:microsoft:windows_nt:terminal_server
CVSS
Base: 10.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
NASL family Windows
NASL id SMB_REG_RAS_ACCESS.NASL
description This script checks whether the following key can be modified by non-admins : HKLM\Software\Microsoft\Windows\RAS Write access to this key allows an unprivileged user to gain additional privileges.
last seen 2019-02-21
modified 2018-11-15
plugin id 10567
published 2000-12-08
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=10567
title Microsoft Windows SMB Registry : NT RAS Administration Registry Key Permission Weakness Local Privilege Escalation
oval via4
accepted 2008-03-24T04:00:38.358-04:00
class vulnerability
contributors
  • name Matt Busby
    organization The MITRE Corporation
  • name Jonathan Baker
    organization The MITRE Corporation
definition_extensions
comment Microsoft Windows NT is installed
oval oval:org.mitre.oval:def:36
description The default permissions for the RAS Administration key in Windows NT 4.0 allows local users to execute arbitrary commands by changing the value to point to a malicious DLL, aka one of the "Registry Permissions" vulnerabilities.
family windows
id oval:org.mitre.oval:def:500
status accepted
submitted 2003-06-08T12:00:00.000-04:00
title Default Permissions on RAS Administration Key
version 68
refmap via4
bid 2064
ms MS00-095
xf nt-ras-reg-perms(5671)
Last major update 10-09-2008 - 15:07
Published 16-02-2001 - 00:00
Last modified 12-10-2018 - 17:30
Back to Top