CVE-2002-0367

HIGH KEV

Microsoft Windows 2000 - Improper Privilege Management

Title source: rule

Description

smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.

Exploits (1)

exploitdb WRITEUP VERIFIED

by EliCZ · textlocalwindows

https://www.exploit-db.com/exploits/21344

View Code ZIP pw:eip

References (10)

[Mailing List] http://marc.info/?l=ntbugtraq&m=101614320402695&w=2

[Broken Link, Patch, Vendor Advisory] http://www.iss.net/security_center/static/8462.php

[Broken Link, Exploit, Patch, Third Party Advisory, VDB Entry, Vendor Advisory] http://www.securityfocus.com/archive/1/262074

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/264441

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/264927

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/4287

[Patch, Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-024

[Broken Link] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A158

[Broken Link] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A76

[Third Party Advisory, US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2002-0367

Scores

CVSS v3 7.8

EPSS 0.0187

EPSS Percentile 83.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-03-03

VulnCheck KEV 2002-03-13

InTheWild.io 2022-03-03

ENISA EUVD EUVD-2002-0364

CWE

CWE-269

Status published

Products (2)

microsoft/windows_2000

microsoft/windows_nt 4.0 (2 CPE variants)

Published Jun 25, 2002

KEV Added Mar 03, 2022

Tracked Since Feb 18, 2026