| Vulnerability Name: | CVE-2001-1238 (CCN-6919) | ||||||||
| Assigned: | 2001-07-16 | ||||||||
| Published: | 2001-07-16 | ||||||||
| Updated: | 2019-04-30 | ||||||||
| Summary: | Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager. | ||||||||
| CVSS v3 Severity: | 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
| ||||||||
| CVSS v2 Severity: | 4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | File Manipulation | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Mon Jul 16 2001 - 11:59:21 CDT W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Mon Jul 16 2001 - 16:06:20 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Mon Jul 16 2001 - 20:10:22 CDT Re: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 06:00:55 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 02:32:44 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 02:42:50 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 10:40:03 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 11:20:33 CDT Re: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 11:58:40 CDT Re: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 15:28:25 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 13:43:20 CDT RE: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 13:57:49 CDT Re[2]: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 14:11:26 CDT Re: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 14:21:02 CDT Re: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Tue Jul 17 2001 - 15:07:55 CDT Re[2]: W2k: Unkillable Applications Source: CCN Type: BugTraq Mailing List, Wed Jul 18 2001 - 06:05:51 CDT Re: Re[2]: W2k: Unkillable Applications Source: MITRE Type: CNA CVE-2001-1238 Source: CCN Type: OSVDB ID: 59514 Microsoft Windows 2000 Task Manager Uppercase Process Name Termination Weakness Source: BUGTRAQ Type: Vendor Advisory 20010716 W2k: Unkillable Applications Source: BID Type: Patch, Vendor Advisory 3033 Source: CCN Type: BID-3033 Microsoft Windows 2000 Task Manager Process Termination Vulnerability Source: XF Type: UNKNOWN win2k-taskmanager-unkillable-process(6919) Source: XF Type: UNKNOWN win2k-taskmanager-unkillable-process(6919) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||