CVE-2007-0211

Sažetak

The hardware detection functionality in the Windows Shell in Microsoft Windows XP SP2 and Professional, and Server 2003 SP1 allows local users to gain privileges via an unvalidated parameter to a function related to the "detection and registration of new hardware."

Reference

http://secunia.com/advisories/24126
http://www.kb.cert.org/vuls/id/240796
http://www.osvdb.org/31890
http://www.securityfocus.com/bid/22481
http://www.securitytracker.com/id?1017633
http://www.us-cert.gov/cas/techalerts/TA07-044A.html
http://www.vupen.com/english/advisories/2007/0575
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-006
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A224

CVSS

Base:	7.2
Impact:	10.0
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

12-10-2018 - 21:42

Objavljeno

13-02-2007 - 20:28