CVE-2004-0213
CVE-2004-0213
Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sends a Windows message to cause Utility Manager to launch winhlp32 by directly accessing the context sensitive help and bypassing the GUI, then sending another message to winhlp32 in order to open a user-selected file, a different vulnerability than CVE-2003-0908.
Affected products
n/a · n/apublic PoCs found — 4
exploitdbwww.exploit-db.com/exploits/351unverifiedexploitdbwww.exploit-db.com/exploits/352unverifiedexploitdbwww.exploit-db.com/exploits/355unverifiedexploitdbwww.exploit-db.com/exploits/350unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://marc.info/?l=bugtraq&m=108975382413405&w=2https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-019https://exchange.xforce.ibmcloud.com/vulnerabilities/16592https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2495http://www.kb.cert.org/vuls/id/868580http://www.us-cert.gov/cas/techalerts/TA04-196A.html