The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft windows 98 |
||
microsoft windows 95 |
||
microsoft windows nt 4.0 |