CVE-2002-0720

CVE Database · CVE-2002-0720

CVE-2002-0720

· N/AModified

CVSS v3.1

N/A

EPSS

2.18%

Published

Sep 5, 2002

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A handler routine for the Network Connection Manager (NCM) in Windows 2000 allows local users to gain privileges via a complex attack that causes the handler to run in the LocalSystem context with user-specified code.

Affected Products (8)

microsoft · windows_2000vulnerable

microsoft · windows_2000_terminal_servicesvulnerable

References (8)

http://www.iss.net/security_center/static/9856.php

http://www.securityfocus.com/bid/5480

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-042

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A26

http://www.iss.net/security_center/static/9856.php

http://www.securityfocus.com/bid/5480

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-042

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A26

KEV Catalog EPSS Scores Vendors All CVEs