CVE-2004-2504

Sažetak

The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges.

Reference

http://archives.neohapsis.com/archives/bugtraq/2004-11/0385.html
http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1324.html
http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1353.html
http://secunia.com/advisories/13225
http://securitytracker.com/id?1012350
http://www.osvdb.org/12158
http://www.securityfocus.com/bid/11736
https://exchange.xforce.ibmcloud.com/vulnerabilities/18287

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

11-07-2017 - 01:31

Objavljeno

31-12-2004 - 05:00