Microsoft Windows User Profile Privilege Escalation Vulnerability

Microsoft Windows User Profile Privilege Escalation Vulnerability

Microsoft Windows is prone to a local privilege-escalation vulnerability. The vulnerability is caused by an insecure search path for the WinLogon facility. If exploited, this could let an attacker run an arbitrary DLL with elevated privileges.

This issue is reported to affect Windows 2000 in the default configuration. Other Windows operating systems are not affected unless the configuration settings related to this vulnerability are changed from the default.