Vulnerability Name: | CVE-1999-0839 (CCN-3664) | ||||||||
Assigned: | 1999-11-29 | ||||||||
Published: | 1999-11-29 | ||||||||
Updated: | 2018-10-12 | ||||||||
Summary: | Windows NT Task Scheduler installed with Internet Explorer 5 allows a user to gain privileges by modifying the job after it has been scheduled. | ||||||||
CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
Vulnerability Type: | CWE-264 | ||||||||
Vulnerability Consequences: | Gain Privileges | ||||||||
References: | Source: CCN Type: BugTraq Mailing List, Thu Dec 02 1999 - 01:00:50 CST Windows NT Task Scheduler vulnerability allows user to administrator elevation Source: MITRE Type: CNA CVE-1999-0839 Source: MSKB Type: UNKNOWN Q246972 Source: CCN Type: Microsoft Windows Update Internet Explorer 5.01 Source: CCN Type: Microsoft Security Bulletin MS99-051 Patch Available for "IE Task Scheduler" Vulnerability Source: CCN Type: OSVDB ID: 1145 Microsoft IE Offline Browsing Pack Task Scheduler Source: CCN Type: BID-728 Microsoft Excel File Import Macro Execution Vulnerability Source: BID Type: UNKNOWN 828 Source: CCN Type: BID-828 Microsoft IE5 Offline Browsing Pack Task Scheduler Vulnerability Source: MS Type: UNKNOWN MS99-051 Source: XF Type: UNKNOWN ie-task-scheduler-privs(3664) Source: CCN Type: Microsoft Knowledge Base Article 246972 Internet Explorer 5 Task Scheduler Allows Privilege Elevation on Windows NT | ||||||||
Vulnerable Configuration: | Configuration 1: Configuration CCN 1: Denotes that component is vulnerable | ||||||||
BACK |