Vulnerability Details CVE-1999-1317
Windows NT 4.0 SP4 and earlier allows local users to gain privileges by modifying the symbolic link table in the \?? object folder using a different case letter (upper or lower) to point to a different device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 76.8%
CVSS Severity
CVSS v2 Score 4.6
References
- http://marc.info/?l=ntbugtraq&m=92127046701349&w=2
- http://marc.info/?l=ntbugtraq&m=92162979530341&w=2
- http://support.microsoft.com/support/kb/articles/q222/1/59.asp
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7398
- http://marc.info/?l=ntbugtraq&m=92127046701349&w=2
- http://marc.info/?l=ntbugtraq&m=92162979530341&w=2
- http://support.microsoft.com/support/kb/articles/q222/1/59.asp
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7398
Products affected by CVE-1999-1317
-
cpe:2.3:o:microsoft:windows_nt:3.5.1
-
cpe:2.3:o:microsoft:windows_nt:4.0