Back to search
CVE-2002-2401
Published: Nov 1, 2007
Modified: Sep 16, 2024
PUBLISHED
Description
NT Virtual DOS Machine (NTVDM.EXE) in Windows 2000, NT and XP does not verify user execution permissions for 16-bit executable files, which allows local users to bypass the loader and execute arbitrary programs.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
win-execute-permissions-16bit(10132)
vdb-entry
x_refsource_XF
20020918 Execution Rights Not Checked Correctly For 16-bit Applications
mailing-list
x_refsource_BUGTRAQ
5740
vdb-entry
x_refsource_BID
http://www.abtrusion.com/msexe16.asp
x_refsource_MISC
319458
vendor-advisory
x_refsource_MSKB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now