CVE-1999-0718
IBM GINA - Privilege Escalation via GroupMapping Registry Key
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-1999-0718. PoCs published by Frank Pikelner.
AI-analyzed exploit summary This exploit describes a privilege escalation vulnerability in IBM's modified GINA for Windows NT, allowing non-administrators to add any group to the local administrators group by creating a specific registry key. The vulnerability is triggered upon system reboot.
Description
IBM GINA, when used for OS/2 domain authentication of Windows NT users, allows local users to gain administrator privileges by changing the GroupMapping registry key.
Exploits (1)
This exploit describes a privilege escalation vulnerability in IBM's modified GINA for Windows NT, allowing non-administrators to add any group to the local administrators group by creating a specific registry key. The vulnerability is triggered upon system reboot.