CVE-2007-0351

Sažetak

Microsoft Windows XP and Windows Server 2003 do not properly handle user logoff, which might allow local users to gain the privileges of a previous system user, possibly related to user profile unload failure. NOTE: it is not clear whether this is an issue in Windows itself, or an interaction with another product. The issue might involve ZoneAlarm not being able to terminate processes when it cannot prompt the user.

Reference

http://www.securityfocus.com/archive/1/457167/100/0/threaded
http://www.securityfocus.com/archive/1/457217/100/0/threaded
http://www.securityfocus.com/archive/1/457340/100/0/threaded
http://www.securityfocus.com/archive/1/457807/100/200/threaded
http://www.securityfocus.com/archive/1/459838/100/0/threaded

CVSS

Base:	6.2
Impact:	10.0
Exploitability:	1.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:L/AC:H/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

16-10-2018 - 16:32

Objavljeno

19-01-2007 - 01:28