COMMAND

    Registry Permissions

SYSTEMS AFFECTED

    - Microsoft Windows NT 4.0 Workstation
    - Microsoft Windows NT 4.0 Server
    - Microsoft Windows NT 4.0 Server, Enterprise Edition
    - Microsoft Windows NT 4.0 Server, Terminal Server Edition

PROBLEM

    The following is based on a Security  Bulletin from the Microsoft.
    This  vulnerability  involves  three  sets  of registry keys whose
    default permissions are too  permissive.  These permissions  could
    allow a malicious user who  could interactively log onto a  target
    machine to:

        - Cause code to run in a local system context
        - Cause code to run the next time another user logged onto the
          same machine
        - Disable  the security  protection for  a previously-reported
          vulnerability

    These three key sets are not  related to each other except by  the
    fact  that  their  permissions  should  be  tightened.   A tool is
    available  that  will  reset  all  of  the  affected  keys  to the
    correct default value.

SOLUTION

    Windows  2000  is  not  affected  by  this  vulnerability.   Patch
    availability:

        - Intel: http://www.microsoft.com/downloads/release.asp?ReleaseID=19172
        - Alpha: http://www.microsoft.com/downloads/release.asp?ReleaseID=19173