MS02-003: WinReg Remote Registry Key Manipulation (316056)
High Nessus Plugin ID 11309
SynopsisLocal users can elevate their privileges.
DescriptionThe key HKLM\SYSTEM\CurrentControlSet\Control\SecurePipeServers\winreg is writeable by non-administrators.
The installation software of Microsoft Exchange sets this key to a world-writeable mode.
Local users could use this misconfiguration to escalate their privileges on this host.
SolutionMicrosoft has released a set of patches for the Windows NT, 2000 and XP.