Microsoft WinNT 4.0 'Registry Permissions' Vulnerability patch - Version 1 Microsoft has released a tool that installs tighter permissions on three sets of registry values in Microsoft(r) Windows NT 4.0. The default permissions could allow a malicious user to gain additional privileges on a machine that they can interactively log onto. This vulnerability involves three sets of registry keys whose default permissions are too permissive. These permissions could allow a malicious user who could interactively log onto a target machine to: - Cause code to run in a local system context. - Cause code to run the next time another user logged onto the same machine. - Disable the security protection for a previously-reported vulnerability. These three key sets are not related to each other except by the fact that their permissions should be tightened. A tool is available that will reset all of the affected keys to the correct default value.