Vulnerabilities > CVE-1999-0382 - Unspecified vulnerability in Microsoft Windows NT 3.5.1/4.0

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

microsoft

exploit available

NVD

Published: 1999-03-12

Updated: 2018-10-12

Summary

The screen saver in Windows NT does not verify that its security context has been changed properly, allowing attackers to run programs with elevated privileges.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows NT 3.5.1 Microsoft Windows NT 4.0	10

Exploit-Db

description	Microsoft Windows NT 4.0/SP1/SP2/SP3/SP4,Windows NT 3.5.1/SP1/SP2/SP3/SP4/SP5 Screensaver Vulnerability. CVE-1999-0382 . Local exploit for windows platform
id	EDB-ID:19359
last seen	2016-02-02
modified	1999-03-10
published	1999-03-10
reporter	Cybermedia Software Private Limited
source	https://www.exploit-db.com/download/19359/
title	Microsoft Windows NT 4.0/SP1/SP2/SP3/SP4,Windows NT 3.5.1/SP1/SP2/SP3/SP4/SP5 Screensaver Vulnerability

References

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-008