Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0100. PoCs published by Frank Monroe.
AI-analyzed exploit summary This is a technical writeup describing a privilege escalation vulnerability in Microsoft Systems Management Server (SMS) due to insecure directory permissions. The attacker can replace the WUSER32.EXE executable with a malicious version, which will run with System privileges upon reboot.
Description
The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program.
Exploits (1)
This is a technical writeup describing a privilege escalation vulnerability in Microsoft Systems Management Server (SMS) due to insecure directory permissions. The attacker can replace the WUSER32.EXE executable with a malicious version, which will run with System privileges upon reboot.