CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-1999-1431

ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explorer from Office 97 applications (such as Word), installing software into the TEMP directory, and changing the name to that for an allowed application, such as Winword.exe.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.028

EPSS Ranking 85.3%

CVSS Severity

CVSS v2 Score 4.6

References

http://marc.info/?l=ntbugtraq&m=91576100022688&w=2
http://marc.info/?l=ntbugtraq&m=91606260910008&w=2
http://www.securityfocus.com/bid/181
http://marc.info/?l=ntbugtraq&m=91576100022688&w=2
http://marc.info/?l=ntbugtraq&m=91606260910008&w=2
http://www.securityfocus.com/bid/181

Products affected by CVE-1999-1431

Microsoft » Zero Administration Kit » Version: 1.0

cpe:2.3:a:microsoft:zero_administration_kit:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-1999-1431

Products

Pricing

Contact Us