Local User Exploitation Risk in Cryptography Module of Windows NT 4.0 by Microsoft
CVE-2000-0259

Currently unrated

Key Information:

Vendor: Microsoft
Status: Terminal Server
Vendor: CVE Published:; 12 April 2000

Summary

The vulnerability arises from improper default permissions on the Cryptography\Offload registry key within Windows NT 4.0. This security flaw permits local users to access and compromise the cryptographic keys of other users, posing significant risks to the integrity and confidentiality of cryptographic operations on affected systems.

References

http://www.securityfocus.com/bid/1105

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

Timeline

Vulnerability Reserved
Apr 26, 2000
Vulnerability published
Apr 12, 2000