Vulnerability Name:

CCN-11505

Published:2003-03-07
Updated:2003-03-07
Summary:Microsoft Windows XP could allow a local attacker to bypass the Safe Mode policy, and gain unauthorized access to the system. Only members of the Administrative group should have permissions to log onto the system in Safe Mode. If the "Welcome Screen" is enabled, a local unprivileged user can log onto the system, even if it is in Safe Mode, and gain unauthorized access to the system.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): Partial
Availibility (A): None
Vulnerability Consequences:Bypass Security
References:Source: CCN
Type: BugTraq Mailing List, Fri Mar 07 2003 - 15:46:35 CST
[EC-SA-01.2003] Windows XP "welcome screen" exposes the names of all the members of the local administrators group

Source: CCN
Type: BID-7046
Microsoft Windows XP Safe Mode Policy Bypass Weakness

Source: XF
Type: UNKNOWN
winxp-safe-mode-bypass(11505)

Vulnerable Configuration:Configuration CCN 1:
  • cpe:/o:microsoft:windows_xp:::home:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:::professional:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_xp:-:sp1:*:*:professional:*:x86:*
  • OR cpe:/o:microsoft:windows_xp:-:sp1:*:*:home:*:x86:*

    • * Denotes that component is vulnerable
    BACK
    microsoft windows xp
    microsoft windows xp
    microsoft windows xp - sp1
    microsoft windows xp - sp1