CVE-2001-1238

Published: Jul 16, 2001Modified: Apr 16, 2026

7.8

Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.8 / Impact: 5.9

Source: NVD

Description

Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which could allow local users to install Trojan horses that cannot be stopped with the Task Manager.

Affected (1)

Products: Microsoft: Windows 2000

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 2000	All versions

Related CWEs

Improper Handling of Case Sensitivity

The product does not properly account for differences in case sensitivity when accessing or determining the properties of a resource, leading to inconsistent results.

References (6)

http://www.securityfocus.com/archive/1/197195

Source: cve@mitre.org

Broken LinkThird Party AdvisoryVDB EntryVendor Advisory

http://www.securityfocus.com/bid/3033

Source: cve@mitre.org

Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/6919

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/archive/1/197195

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkThird Party AdvisoryVDB EntryVendor Advisory

http://www.securityfocus.com/bid/3033

Source: af854a3a-2127-422b-91ae-364da2661108

Broken LinkPatchThird Party AdvisoryVDB EntryVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/6919

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.