NVD

Id
80211  
Name
CVE-2002-1230  
Description
NetDDE Agent on Windows NT 4.0, 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code as LocalSystem via "shatter" style attack by sending a WM_COPYDATA message followed by a WM_TIMER message, as demonstrated by GetAd, aka "Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation."  
Reject
 
CVSS Version
2  
CVSS Score
4.6  
Severity
Medium  
CVSS Base Score
4.6  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-05  
Published
2002-11-04  
Modified Date
2008-09-10  
Seq
2002-1230  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
399875 80211 CVE-2002-1230 http://getad.chat.ru/  View
399876 80211 CVE-2002-1230 oval:org.mitre.oval:def:681  View
399877 80211 CVE-2002-1230 N-027  View
399878 80211 CVE-2002-1230 win-netdde-gain-privileges(10343)  View
399879 80211 CVE-2002-1230 MS02-071  View
399880 80211 CVE-2002-1230 http://www.packetstormsecurity.nl/filedesc/GetAd.c.html  View
399881 80211 CVE-2002-1230 5927  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
63852 JVNDB-2002-000179 Microsoft Windows の Win32 Messaging System における権限昇格の脆弱性 Microsoft Windows の Win32 messaging system において、 WM_TIMER を利用し、「メッセージ」を送信する際に、送信先のアプリケーションが「メッセージ」の妥当性を検査していないこと、及びより高い権限で動作していた場合に、権限昇格が発生する脆弱性が存在します。 CVE-2002-1230 5614 CVE-2002-1230 80211 4.6 http://jvndb.jvn.jp/ja/contents/2002/JVNDB-2002-000179.html 2002-08-06 2007-04-01 View