Vulnerabilities > CVE-2001-0047 - Unspecified vulnerability in Microsoft Windows NT 4.0/Terminalserver
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary Microsoft Transaction Server (MTS) packages and gain privileges, aka one of the "Registry Permissions" vulnerabilities.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 2 |
Nessus
NASL family | Windows |
NASL id | SMB_REG_MTS_ACCESS.NASL |
description | The registry key HKLM\SOFTWARE\Microsoft\Transaction Server\Packages can be modified by users not in the admin group. Write access to this key allows an unprivileged user to gain additional privileges. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11867 |
published | 2003-10-08 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11867 |
title | Microsoft Windows SMB Registry : NT MTS Package Administration Registry Key Permission Weakness |
code |
|
Oval
accepted | 2008-03-24T04:00:14.203-04:00 | ||||||||
class | vulnerability | ||||||||
contributors |
| ||||||||
definition_extensions |
| ||||||||
description | The default permissions for the MTS Package Administration registry key in Windows NT 4.0 allows local users to install or modify arbitrary Microsoft Transaction Server (MTS) packages and gain privileges, aka one of the "Registry Permissions" vulnerabilities. | ||||||||
family | windows | ||||||||
id | oval:org.mitre.oval:def:140 | ||||||||
status | accepted | ||||||||
submitted | 2004-06-08T12:00:00.000-04:00 | ||||||||
title | Default Registry Permissions on the MTS Package Admin Key | ||||||||
version | 71 |