CVE-2002-2401

Current Description

NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs.

Basic Data

PublishedDecember 31, 2002
Last ModifiedApril 30, 2019
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-264
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:L/AC:L/Au:N/C:P/I:P/A:N
CVSS 2 - Access VectorLOCAL
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactNONE
CVSS 2 - Base Score3.6
SeverityLOW
Exploitability Score3.9
Impact Score4.9
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSMicrosoftWindows 2000********
    2.3OSMicrosoftWindows 2000*sp1******
    2.3OSMicrosoftWindows 2000*sp2******
    2.3OSMicrosoftWindows 2000*sp3******
    2.3OSMicrosoftWindows Nt4.0*******
    2.3OSMicrosoftWindows Nt4.0*workstation*****
    2.3OSMicrosoftWindows Nt4.0sp1enterprise*****
    2.3OSMicrosoftWindows Nt4.0sp1server*****
    2.3OSMicrosoftWindows Nt4.0sp1terminal_srv*****
    2.3OSMicrosoftWindows Nt4.0sp1workstation*****
    2.3OSMicrosoftWindows Nt4.0sp2enterprise*****
    2.3OSMicrosoftWindows Nt4.0sp2server*****
    2.3OSMicrosoftWindows Nt4.0sp2terminal_srv*****
    2.3OSMicrosoftWindows Nt4.0sp2workstation*****
    2.3OSMicrosoftWindows Nt4.0sp3enterprise*****
    2.3OSMicrosoftWindows Nt4.0sp3server*****
    2.3OSMicrosoftWindows Nt4.0sp3terminal_srv*****
    2.3OSMicrosoftWindows Nt4.0sp3workstation*****
    2.3OSMicrosoftWindows Nt4.0sp4enterprise*****
    2.3OSMicrosoftWindows Nt4.0sp4server*****
    2.3OSMicrosoftWindows Nt4.0sp4terminal_srv*****
    2.3OSMicrosoftWindows Nt4.0sp4workstation*****
    2.3OSMicrosoftWindows Nt4.0sp5enterprise*****
    2.3OSMicrosoftWindows Nt4.0sp5server*****
    2.3OSMicrosoftWindows Nt4.0sp5terminal_srv*****
    2.3OSMicrosoftWindows Nt4.0sp5workstation*****
    2.3OSMicrosoftWindows Nt4.0sp6enterprise*****
    2.3OSMicrosoftWindows Nt4.0sp6server*****
    2.3OSMicrosoftWindows Nt4.0sp6terminal_srv*****
    2.3OSMicrosoftWindows Nt4.0sp6workstation*****
    2.3OSMicrosoftWindows Nt4.0sp6aenterprise*****
    2.3OSMicrosoftWindows Nt4.0sp6aserver*****
    2.3OSMicrosoftWindows Nt4.0sp6aworkstation*****
    2.3OSMicrosoftWindows Xp**home*****
    2.3OSMicrosoftWindows Xp**pro*****
    2.3OSMicrosoftWindows Xp*sp1home*****
    2.3OSMicrosoftWindows Xp*sp1pro*****

Vulnerable Software List

VendorProductVersions
Microsoft Windows Xp *
Microsoft Windows 2000 *
Microsoft Windows Nt 4.0

References

NameSourceURLTags
20020918 Execution Rights Not Checked Correctly For 16-bit Applicationshttp://archives.neohapsis.com/archives/bugtraq/2002-09/0211.htmlBUGTRAQ
319458http://support.microsoft.com/default.aspx?scid=kb;[LN];319458MSKB
http://www.abtrusion.com/msexe16.asphttp://www.abtrusion.com/msexe16.aspMISC
win-execute-permissions-16bit(10132)http://www.iss.net/security_center/static/10132.phpXF
5740http://www.securityfocus.com/bid/5740BID