Vulnonym.org

CVE-1999-1365 - Hard handed Hierarchies

Description

Windows NT searches a user’s home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE EXPLORER.EXE USERINIT.EXE or TASKMGR.EXE which could allow local users to bypass access restrictions or gain privileges by placing a Trojan horse program into the root directory which is writable by default.

Reference

http://marc.info/?l=ntbugtraq&m=93069418400856&w=2 http://marc.info/?l=ntbugtraq&m=93127894731200&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/2336 http://www.securityfocus.com/bid/515