Privilege Escalation Vulnerability in LSASS Service of Windows Server 2000 and 2003

Privilege Escalation Vulnerability in LSASS Service of Windows Server 2000 and 2003

CVE-2004-0894 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.

Learn more about our Cis Benchmark Audit For Server Software.