Summary
A security issue has been identified in WM_TIMER that could allow an attacker to compromise a computer running Microsoft Windows and gain complete control over it.
Recommendation: Users using any of the affected
products should install the patch immediately.
Maximum Severity Rating: Critical
Affected Software:
Microsoft Windows NT 4.0
Microsoft Windows NT 4.0, Terminal Server Edition Microsoft Windows 2000
Microsoft Windows XP
See
http://www.microsoft.com/technet/security/bulletin/ms02-071.mspx
Severity
Classification
-
CVE CVE-2002-1230 -
CVSS Base Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Microsoft Products HTML Sanitisation Component XSS Vulnerability (2741517)
- Microsoft Lync Server Information Disclosure Vulnerability (2969258)
- ASP.NET MVC Security Feature Bypass Vulnerability (2990942)
- Microsoft .NET Framework Security Bypass Vulnerability (2984625)
- Microsoft Windows DirectWrite Denial of Service Vulnerability (2665364)