CVE-2001-0349 Information

Description

Microsoft Windows 2000 telnet service creates named pipes with predictable names and does not properly verify them which allows local users to execute arbitrary commands by creating a named pipe with the predictable name and associating a malicious program with it the first of two variants of this vulnerability.

Reference

http://www.kb.cert.org/vuls/id/587587 http://www.securityfocus.com/bid/2849 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-031 https://exchange.xforce.ibmcloud.com/vulnerabilities/6664