关于 CVE-2010-0023 的漏洞信息

1. 漏洞描述
From NVD
The Client/Server Run-time Subsystem (CSRSS) in Microsoft Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP2 does not properly kill processes after a logout, which allows local users to obtain sensitive information or gain privileges via a crafted application that continues to execute throughout the logout of one user and the login session of the next user, aka "CSRSS Local Privilege Elevation Vulnerability."
From 神龙GPT (AIGC)
Microsoft Windows 2000 SP4、 XP SP2 和 SP3 中的客户端/服务器运行子系统(CSRSS)在用户注销后未正确杀死进程,这允许本地用户通过编写应用程序来获取敏感信息或提升权限,该应用程序在整个用户注销和下一个用户的登录会话中继续执行,即存在“CSRSS 本地权限提升漏洞”。
2. 漏洞评分(CVSS)
From NVD
NVD 暂无评分
From 神龙GPT (AIGC)
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3. 漏洞类别
From NVD
NVD 暂无漏洞类别信息
From 神龙GPT (AIGC)
神龙GPT 暂无漏洞类别信息(请耐心等待)
Reference