CVE-2006-3443

Untrusted search path vulnerability in Winlogon in Microsoft Windows 2000 SP4, when SafeDllSearchMode is disabled, allows local users to gain privileges via a malicious DLL in the UserProfile directory, aka "User Profile Elevation of Privilege Vulnerability."
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*

History

No history.

Information

Published : 2006-08-09 01:04

Updated : 2024-02-04 16:52


NVD link : CVE-2006-3443

Mitre link : CVE-2006-3443

CVE.ORG link : CVE-2006-3443


JSON object : View

Products Affected

microsoft

  • windows_2000
CWE
CWE-264

Permissions, Privileges, and Access Controls