Summary
A security issue has been identified in WM_TIMER that could allow an attacker to compromise a computer running Microsoft Windows and gain complete control over it.
Recommendation: Users using any of the affected
products should install the patch immediately.
Maximum Severity Rating: Critical
Affected Software:
Microsoft Windows NT 4.0
Microsoft Windows NT 4.0, Terminal Server Edition Microsoft Windows 2000
Microsoft Windows XP
See
http://www.microsoft.com/technet/security/bulletin/ms02-071.mspx
Severity
Classification
-
CVE CVE-2002-1230 -
CVSS Base Score: 4.6
AV:L/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- IE VBScript Handling patch (Q318089)
- Microsoft Windows DirectWrite Denial of Service Vulnerability (2665364)
- Microsoft Visual Studio Privilege Elevation Vulnerability (2651019)
- Microsoft .NET Framework Information Disclosure Vulnerability (2567951)
- Microsoft SharePoint Foundation HTML Sanitisation Component XSS Vulnerability (2821818)