CVE-1999-1317 — Microsoft Windows NT vulnerability

3 documents3 sources

Severity

4.6MEDIUMNVD

EPSS

0.8%

top 26.26%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows NT

Timeline

PublishedDec 31

Latest updateApr 30

Description

Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: support.microsoft.com ↗Patch: support.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-fgh9-68h7-45xw: Windows NT 4↗2022-04-30

▶

CVEList

CVE-1999-1317: Windows NT 4↗2002-03-09

▶