Vulnerability in Microsoft Windows_2000

CVE-2001-1238

Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan ho…

EPSS: 0.013 (67.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Weakness classification (CWE)

References

  • cve@mitre.org (Broken Link, Vendor Advisory, mailing-list, x_refsource_BUGTRAQ, VDB Entry, Third Party Advisory)
  • cve@mitre.org (Patch, VDB Entry, Third Party Advisory, vdb-entry, Broken Link, x_refsource_BID, Vendor Advisory)
  • cve@mitre.org (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2001-1238?
CVE-2001-1238 is a high-severity vulnerability in Microsoft Windows_2000, classified under Improper Handling of Case Sensitivity. CVSS score: 7.8/10. Published 2001-07-16.
How severe is CVE-2001-1238?
High severity. CVSS v3 base score is 7.8 out of 10.