Skip to content

Commit b386062

Browse files
committed
add: AVE-1999-0975
1 parent 5b035dc commit b386062

1 file changed

Lines changed: 24 additions & 0 deletions

File tree

vulns/1999/AVE-1999-0975.toml

Lines changed: 24 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,24 @@
1+
[basic]
2+
description = "Windows NT 默认启用的 OS/2 和 POSIX 子系统存在安全绕过漏洞。这两个子系统拥有独立的权限模型和 API 接口,当被启用时,本地攻击者可以利用子系统间的安全策略差异,通过运行 OS/2 或 POSIX 格式的可执行程序绕过 Windows NT 的原生安全机制,导致权限提升或安全策略绕过。该漏洞危害等级严重(CVSS 10.0),影响所有启用 OS/2 或 POSIX 子系统的 Windows NT 版本。建议禁用不必要的子系统以降低风险。"
3+
published = "1999-01-01T05:00:00.000"
4+
remediation = '如无需 OS/2 兼容支持,在注册表 `HKLM\SYSTEM\CurrentControlSet\Control\Session Manager\SubSystems` 中删除 `Os2` 和 `Posix` 子系统的注册值,或将其设为 `%systemroot%\system32\os2srv.exe` 为空,然后重启系统使配置生效。如仅需其一,保留对应项、删除另一项即可,无需卸载整个系统。'
5+
score = 10
6+
severity = "CRITICAL"
7+
sources = ["avd"]
8+
title = "Microsoft Windows NT OS/2 与 POSIX 子系统安全漏洞"
9+
updated = "2026-06-16T21:48:47.320"
10+
11+
[exploit]
12+
exp_urls = []
13+
poc_urls = []
14+
15+
[id]
16+
aliases = ["CVE-1999-0654"]
17+
ave_id = "AVE-1999-0975"
18+
19+
[meta]
20+
collected_at = "2026-07-14T00:00:00Z"
21+
status = "completed"
22+
23+
[references]
24+
urls = ["https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0654"]

0 commit comments

Comments
 (0)