Vulnerability Note VU#868580
Microsoft Windows Utility Manager launches applications with system privileges
The Microsoft Windows 2000 Utility Manager allows authenticated local users to launch applications with SYSTEM privileges.
The Microsoft Windows 2000 Utility Manager is a program that permits users to monitor and launch various accessibility applications. This program contains a privilege escalation vulnerability that permits authenticated local users to launch applications with SYSTEM privileges.
This vulnerability allows authenticated local users to launch applications with SYSTEM privileges.
Apply a patch from Microsoft
Disable the Utility Manager
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||13 Jul 2004||14 Jul 2004|
CVSS Metrics (Learn More)
This vulnerability was reported to Microsoft by Cesar Cerrudo of Application Security Inc.
This document was written by Jeffrey P. Lanza.
- CVE IDs: CAN-2004-0213
- Date Public: 13 Jul 2004
- Date First Published: 14 Jul 2004
- Date Last Updated: 14 Jul 2004
- Severity Metric: 21.26
- Document Revision: 7
If you have feedback, comments, or additional information about this vulnerability, please send us email.