First published: Fri Aug 03 2001(Updated: )
Windows NT 4.0 SP 6a allows a local user with write access to winnt/system32 to cause a denial of service (crash in lsass.exe) by running the NT4ALL exploit program in 'SPECIAL' mode.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Windows NT | =4.0 | |
Microsoft Windows NT | =4.0-sp2 | |
Microsoft Windows NT | =4.0-sp1 | |
Microsoft Windows NT | =4.0-sp4 | |
Microsoft Windows NT | =4.0-sp6a | |
Microsoft Windows NT | =4.0-sp6 | |
Microsoft Windows NT | =4.0-sp3 | |
Microsoft Windows NT | =4.0-sp5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2001-1122 is classified as a denial of service vulnerability affecting Windows NT 4.0 SP 6a.
To fix CVE-2001-1122, it is recommended to apply the latest service pack or updates to Windows NT 4.0.
CVE-2001-1122 affects local users who have write access to the winnt/system32 directory on Windows NT 4.0.
CVE-2001-1122 is associated with the NT4ALL exploit program which can crash lsass.exe.
No, CVE-2001-1122 can only be exploited by local users with specific system access rights.