oval:org.mitre.oval:def:158

Definition Id: oval:org.mitre.oval:def:158

Oval ID:	oval:org.mitre.oval:def:158
Title:	Windows NT Process Handle Duplication Privilege Escalation
Description:	smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2002-0367	Version:	1
Platform(s):	Microsoft Windows NT	Product(s):	Windows NT 4.0
Definition Synopsis:
Microsoft Windows NT is installed AND NOT this is an NT Terminal Server AND the version of smss.exe is less than 4.0.1381.7152 AND NOT Patch Q320206 Installed

Definition Id: oval:org.mitre.oval:def:36

Oval ID:	oval:org.mitre.oval:def:36
Title:	Microsoft Windows NT is installed
Description:	The operating system installed on the system is Microsoft Windows NT.
Family:	windows	Class:	inventory
Reference(s):	cpe:/o:microsoft:windows_nt	Version:	6
Platform(s):	Microsoft Windows NT	Product(s):
Definition Synopsis:
the installed operating system is part of the Microsoft Windows family AND Windows NT 4.0 is installed
Referenced By:
oval:org.mitre.oval:def:158