NtImpersonateClientOfPort local procedure call in Windows NT 4.0 allows local users to gain privileges, aka Spoofed LPC Port Request.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Windows_nt | Microsoft | 4.0 (including) | 4.0 (including) |
| Windows_nt | Microsoft | 4.0-sp1 (including) | 4.0-sp1 (including) |
| Windows_nt | Microsoft | 4.0-sp2 (including) | 4.0-sp2 (including) |
| Windows_nt | Microsoft | 4.0-sp3 (including) | 4.0-sp3 (including) |
| Windows_nt | Microsoft | 4.0-sp4 (including) | 4.0-sp4 (including) |
| Windows_nt | Microsoft | 4.0-sp5 (including) | 4.0-sp5 (including) |
| Windows_nt | Microsoft | 4.0-sp6 (including) | 4.0-sp6 (including) |
References
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ247869
- http://www.bindview.com/security/advisory/adv_NtImpersonate.html
- http://www.securityfocus.com/bid/934
- http://xforce.iss.net/search.php3?type=2\u0026pattern=nt-spoofed-lpc-port
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-003
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ247869
- http://www.bindview.com/security/advisory/adv_NtImpersonate.html
- http://www.securityfocus.com/bid/934
- http://xforce.iss.net/search.php3?type=2\u0026pattern=nt-spoofed-lpc-port
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-003