Vulnerabilities > CVE-2002-0373 - Privilege Escalation vulnerability in Microsoft Windows Media Player 7.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The Windows Media Device Manager (WMDM) Service in Microsoft Windows Media Player 7.1 on Windows 2000 systems allows local users to obtain LocalSystem rights via a program that calls the WMDM service to connect to an invalid local storage device, aka "Privilege Elevation through Windows Media Device Manager Service".
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS02-032.NASL |
description | The remote version of Windows Media Player is affected by various flaws : - A remote attacker may be able to execute arbitrary code when sending a badly formed file. - A local attacker may gain SYSTEM privileges. |
last seen | 2017-10-29 |
modified | 2017-08-30 |
plugin id | 11302 |
published | 2003-03-01 |
reporter | Tenable |
source | https://www.tenable.com/plugins/index.php?view=single&id=11302 |
title | MS02-032: Cumulative patch for Windows Media Player (320920) |
code |
|