NetDDE Agent on Windows NT 4.0, 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows local users to execute arbitrary code as LocalSystem via "shatter" style attack by sending a WM_COPYDATA message followed by a WM_TIMER message, as demonstrated by GetAd, aka "Flaw in Windows WM_TIMER Message Handling Could Enable Privilege Elevation."
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2004-09-01T04:00:00
Updated: 2024-08-08T03:19:28.487Z
Reserved: 2002-10-21T00:00:00
Link: CVE-2002-1230
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-11-04T05:00:00.000
Modified: 2024-11-20T23:40:52.353
Link: CVE-2002-1230
Redhat
No data.