CVE-1999-1365

Windows NT searches a users home directory (%systemroot% by default) before other directories to find critical programs such as NDDEAGNT.EXE, EXPLORER.EXE, USERINIT.EXE or TASKMGR.EXE, which could allow local users to bypass access restrictions or gain privileges by placing a Trojan horse program into the root directory, which is writable by default.

Affected Software

References

• http://marc.info/?l=ntbugtraq\u0026m=93069418400856\u0026w=2
• http://marc.info/?l=ntbugtraq\u0026m=93127894731200\u0026w=2
• https://exchange.xforce.ibmcloud.com/vulnerabilities/2336
• http://www.securityfocus.com/bid/515