Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0121 — Microsoft Windows NT vulnerability

4 documents4 sources

Severity

3.6LOWNVD

EPSS

1.9%

top 16.93%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows NT

Timeline

PublishedFeb 1

Latest updateApr 30

Description

The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in the recycler directory, aka the "Recycle Bin Creation" vulnerability.

CVSS vector

AV:L/AC:L/C:P/I:P/A:NExploitability: 3.9 | Impact: 4.9

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

🔴Vulnerability Details

GHSA

GHSA-wrq9-v6ff-f2v6: The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in↗2022-04-30

▶

CVEList

CVE-2000-0121: The Recycle Bin utility in Windows NT and Windows 2000 allows local users to read or modify files by creating a subdirectory with the victim's SID in↗2000-03-22

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows NT 4.0 - Recycle Bin Pre-created Folder↗2000-02-01

▶