Security 10748 Published by

Microsoft has released a tool that corrects the permissions on several registry values in Microsoft® Windows NT® 4.0. The default permissions could allow a malicious user to gain additional privileges on an affected machine.

Frequently asked questions regarding this vulnerability and the patch can be found at http://www.microsoft.com/technet/security/bulletin/fq00-095.asp

Affected Software Versions
Microsoft Windows NT 4.0
Microsoft Windows NT 4.0 Server
Microsoft Windows NT 4.0 Server, Enterprise Edition
Microsoft Windows NT 4.0 Server, Terminal Server Edition

Patch Availability
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=24501

Note: The version of the tool in this bulletin also includes all changes discussed in Security Bulletins MS00-008 and MS00-024.

Note: This tool may be run on machines running Windows NT 4.0 Service Packs 5 and 6a.