Test ID:	1.3.6.1.4.1.25623.1.0.11309
Category:	Windows
Title:	Winreg registry key writeable by non-admins
Summary:	NOSUMMARY
Description:	Description: The key HKLM\CurrentControlSet\Control\SecurePipeServers\winreg is writeable by non-administrators. The installation software of Microsoft Exchange sets this key to a world-writeable mode. Local users may use this misconfiguration to escalate their privileges on this host. Solution : see http://www.microsoft.com/technet/security/bulletin/ms02-003.mspx Risk factor : High
Cross-Ref:	BugTraq ID: 4053 Common Vulnerability Exposure (CVE) ID: CVE-2002-0049 http://www.securityfocus.com/bid/4053 Microsoft Security Bulletin: MS02-003 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-003 http://www.osvdb.org/2042 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1022 XForce ISS Database: exchange-attendant-incorrect-permissions(8092) https://exchange.xforce.ibmcloud.com/vulnerabilities/8092
Copyright	This script is Copyright (C) 2003 Renaud Deraison

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.