CVE-2004-1658

Sažetak

Kerio Personal Firewall 4.0 (KPF4) allows local users with administrative privileges to bypass the Application Security feature and execute arbitrary processes by directly writing to \device\physicalmemory to restore the running kernel's SDT ServiceTable.

Reference

http://marc.info/?l=bugtraq&m=109420310631039&w=2
http://secunia.com/advisories/12468/
http://www.security.org.sg/vuln/kerio4016.html
http://www.securityfocus.com/bid/11096
https://exchange.xforce.ibmcloud.com/vulnerabilities/17270

CVSS

Base:	4.6
Impact:	6.4
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:31

Objavljeno

02-09-2004 - 04:00