Windows Help System Local Privilege Escalation Vulnerability

Windows Help System Local Privilege Escalation Vulnerability

CVE-1999-0975 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The Windows help system can allow a local user to execute commands as another user by editing a table of contents metafile with a .CNT extension and modifying the topic action to include the commands to be executed when the .hlp file is accessed.

Learn more about our User Device Pen Test.