CVE-2002-0367
HIGHCISA KEVEPSS 91th pctlDescription
smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.
CVSS v3 Vector
Exploitability
Impact
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploit Intelligence
High risk: more likely to be exploited than 91% of all known CVEs.
Microsoft Windows Privilege Escalation Vulnerability
smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges.
Apply updates per vendor instructions.
Remediation due: 2022-03-24
References
- http://marc.info/?l=ntbugtraq&m=101614320402695&w=2
- http://www.iss.net/security_center/static/8462.php
- http://www.securityfocus.com/archive/1/262074
- http://www.securityfocus.com/archive/1/264441
- http://www.securityfocus.com/archive/1/264927
- http://www.securityfocus.com/bid/4287
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-024
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A158
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A76
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2002-0367
Find and fix vulnerabilities across your fleet
TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.
Start freeThis product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2026-04-16.