Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-1999-1431

Published: 07/01/2005 Updated: 18/10/2016
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 465
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Microsoft

Vulnerability Summary

ZAK in Appstation mode allows users to bypass the "Run only allowed apps" policy by starting Explorer from Office 97 applications (such as Word), installing software into the TEMP directory, and changing the name to that for an allowed application, such as Winword.exe.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft zero administration kit 1.0

Exploits

Exploit DB: Microsoft Zero Administration Kit (ZAK) 1.0 / Office97 - Backdoor Access
source: wwwsecurityfocuscom/bid/181/info Zero Administration Kit (ZAK) was designed to allow administrators to (among other things) lock down the NT environment and restrict the user's access to certain applications and system functions In an instance where the end-user is not allowed to execute Windows Explorer and other "forbidden app ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/181http://marc.info/?l=ntbugtraq&m=91576100022688&w=2http://marc.info/?l=ntbugtraq&m=91606260910008&w=2https://nvd.nist.govhttps://www.exploit-db.com/exploits/19144/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injectionCVE-2024-35894SQLCVE-2024-5105CVE-2014-100005CVE-2024-35895unauthorizedCVE-2024-22120CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook