{"cve":{"cve_id":"CVE-2002-0367","is_kev":true,"kev_date_added":"2022-03-03","kev_vendor_project":"Microsoft","kev_product":"Windows","kev_vulnerability_name":"Microsoft Windows Privilege Escalation Vulnerability","kev_short_description":"smss.exe debugging subsystem in Microsoft Windows does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges.","kev_required_action":"Apply updates per vendor instructions.","kev_due_date":"2022-03-24","kev_known_ransomware":false,"kev_notes":"https://nvd.nist.gov/vuln/detail/CVE-2002-0367","kev_cwes":[],"epss_score":0.05188,"epss_percentile":0.91381,"epss_as_of":"2026-06-23","description":"smss.exe debugging subsystem in Windows NT and Windows 2000 does not properly authenticate programs that connect to other programs, which allows local users to gain administrator or SYSTEM privileges by duplicating a handle to a privileged process, as demonstrated by DebPloit.","published_at":"2003-04-02T05:00:00Z","last_modified_at":"2026-06-16T21:57:17.883000Z","cvss_v3_score":7.8,"cvss_v3_vector":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","cvss_v3_severity":"HIGH","cvss_v4_score":null,"cvss_v4_vector":null,"cvss_v4_severity":null,"ssvc_decision":null,"ssvc_exploitation":"active","ssvc_automatable":false,"ssvc_technical_impact":"total","cwes":["CWE-269"],"nvd_references":["http://www.securityfocus.com/archive/1/264441","http://marc.info/?l=ntbugtraq&m=101614320402695&w=2","http://www.securityfocus.com/bid/4287","https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-024","http://www.securityfocus.com/archive/1/264927","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A76","http://www.securityfocus.com/archive/1/262074","http://www.iss.net/security_center/static/8462.php","https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A158"],"vuln_status":"Analyzed","trending_score":null,"is_trending":false,"has_trended":false,"trended_number_one":false,"trending_peak_score":null,"trending_peak_rank":null,"started_trending_at":null,"trended_number_one_at":null,"summary_generated":null,"summary_generated_at":null,"summary_model":null,"created_at":"2026-06-24T00:09:31.350578Z","updated_at":"2026-06-28T23:02:20.770950Z"},"effective_severity":"HIGH","badges":["kev"],"impact_analysis":[],"cvss_v3_decoded":{"version":"3.1","metrics":[{"metric":"AV","name":"Attack Vector","value":"L","value_label":"Local"},{"metric":"AC","name":"Attack Complexity","value":"L","value_label":"Low"},{"metric":"PR","name":"Privileges Required","value":"L","value_label":"Low"},{"metric":"UI","name":"User Interaction","value":"N","value_label":"None"},{"metric":"S","name":"Scope","value":"U","value_label":"Unchanged"},{"metric":"C","name":"Confidentiality","value":"H","value_label":"High"},{"metric":"I","name":"Integrity","value":"H","value_label":"High"},{"metric":"A","name":"Availability","value":"H","value_label":"High"}]},"cvss_v4_decoded":{"version":null,"metrics":[]},"affected":[{"vendor_slug":"microsoft","vendor_name":"Microsoft","product_slug":"windows-2000","product_name":"windows_2000","version_start":null,"version_start_inclusive":null,"version_end":null,"version_end_inclusive":null,"cpe23_uri":"cpe:2.3:o:microsoft:windows_2000:-:*:*:*:*:*:*:*"},{"vendor_slug":"microsoft","vendor_name":"Microsoft","product_slug":"windows-nt","product_name":"windows_nt","version_start":"4.0","version_start_inclusive":true,"version_end":"4.0","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*"},{"vendor_slug":"microsoft","vendor_name":"Microsoft","product_slug":"windows-nt","product_name":"windows_nt","version_start":"4.0","version_start_inclusive":true,"version_end":"4.0","version_end_inclusive":true,"cpe23_uri":"cpe:2.3:o:microsoft:windows_nt:4.0:-:*:*:terminal_server:*:*:*"}],"exploit_refs":[],"news":[],"references":[{"url":"http://www.securityfocus.com/archive/1/264441","source_type":"MISC","tags":[]},{"url":"http://marc.info/?l=ntbugtraq&m=101614320402695&w=2","source_type":"MAILING_LIST","tags":["mailing-list"]},{"url":"http://www.securityfocus.com/bid/4287","source_type":"MISC","tags":[]},{"url":"https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-024","source_type":"MISC","tags":[]},{"url":"http://www.securityfocus.com/archive/1/264927","source_type":"MISC","tags":[]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A76","source_type":"MISC","tags":[]},{"url":"http://www.securityfocus.com/archive/1/262074","source_type":"MISC","tags":[]},{"url":"http://www.iss.net/security_center/static/8462.php","source_type":"MISC","tags":[]},{"url":"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A158","source_type":"MISC","tags":[]}],"timeline":[{"type":"published","at":"2003-04-02T05:00:00Z","label":"CVE published","source":null},{"type":"cisa_reported","at":"2022-03-03T00:00:00Z","label":"Added to CISA KEV catalog","source":"kev"},{"type":"ssvc_changed","at":"2026-06-24T00:30:43.703670Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:30:43.703670Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"ssvc_changed","at":"2026-06-24T00:30:43.703670Z","label":"SSVC decision revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:30:43.703670Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:30:43.703670Z","label":"CVSS score revised","source":"vulnrichment"},{"type":"cvss_changed","at":"2026-06-24T00:30:43.703670Z","label":"CVSS score revised","source":"vulnrichment"}]}