CVE-2006-1475

Sažetak

Windows Firewall in Microsoft Windows XP SP2 does not produce application alerts when an application is executed using the NTFS Alternate Data Streams (ADS) filename:stream syntax, which might allow local users to launch a Trojan horse attack in which the victim does not obtain the alert that Windows Firewall would have produced for a non-ADS file.

Reference

http://www.securityfocus.com/archive/1/428970/100/0/threaded
http://www.securityfocus.com/archive/1/429111/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/25597

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

18-10-2018 - 16:32

Objavljeno

29-03-2006 - 01:06