Skip to main content

CVE-2003-1246

Severity Low
Score 2.1/10

Summary

NtCreateSymbolicLinkObject in ntdll.dll in Integrity Protection Driver (IPD) 1.2 and 1.3 allows local users to create and overwrite arbitrary files via a symlink attack on \winnt\system32\drivers using the subst command.

  • LOW
  • LOCAL
  • NONE
  • PARTIAL
  • NONE
  • NONE

References

Advisory Timeline

  • Published