CVE-1999-0496Microsoft Windows NT vulnerability

CWE-2643 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.3%
top 45.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Windows NT
Timeline
PublishedJan 1
Latest updateApr 30

Description

A Windows NT 4.0 user can gain administrative rights by forcing NtOpenProcessToken to succeed regardless of the user's permissions, aka GetAdmin.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-5669-f2cv-m5hv: A Windows NT 42022-04-30
CVEList
CVE-1999-0496: A Windows NT 41999-09-29
CVE-1999-0496 — Microsoft Windows NT vulnerability | cvebase