CVE-2000-0197 : The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which a

The Windows NT scheduler uses the drive mapping of the interactive user who is currently logged onto the system, which allows the local user to gain privileges by providing a Trojan horse batch file in place of the original batch file.

Published 2000-02-14 05:00:00

Updated 2008-09-10 19:03:17

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2000-0197

Probability of exploitation activity in the next 30 days: 0.07%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 29 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2000-0197

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2000-0197

Products affected by CVE-2000-0197

Microsoft » Windows Nt » Version: 4.0
cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2000-0197

Exploit prediction scoring system (EPSS) score for CVE-2000-0197

CVSS scores for CVE-2000-0197

References for CVE-2000-0197

Products affected by CVE-2000-0197