HighCheck or Attack Name: NTScreenSaver
A vulnerability exists in the Windows NT screen saver that could allow local administrator privileges to be compromised. The hole exists because under some circumstances the screen saver will fail to drop its elevated privileges and can then be tricked into running arbitrary commands with administrative rights.
Windows NT users should immediately obtain and apply the ScrnSav-fix hotfix from Microsoft.
Microsoft Security Bulletin MS99-008, Patch Available for Windows NT "Screen Saver" Vulnerability, http://www.microsoft.com/security/bulletins/ms99-008.asp
Microsoft Knowledge Base Article Q221991, Screen Saver Vulnerability Lets User Privileges be Elevated, http://support.microsoft.com/support/kb/articles/q221/9/91.asp
Cybermedia Software Private Limited, Screen Saver vulnerability, http://www.cybermedia.co.in/NT_Security/SS_vulnerability.htm
