[Forgot Password]
Login  Register Subscribe

23631

 
 

115083

 
 

97147

 
 

909

 
 

78764

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2006-4801

Date: (C)2006-09-14   (M)2015-12-16 


Race condition in Deja Vu, as used in Roxio Toast Titanium 7 and possibly other products, allows local users to execute arbitrary code via temporary files, including dejavu_manual.rb, which are executed with raised privileges.

CVSS Score: 6.2Access Vector: LOCAL
Exploit Score: 1.9Access Complexity: HIGH
Impact Score: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
BID-19955
SECUNIA-21867
ADV-2006-3608
http://www.netragard.com/pdfs/research/ROXIO_RACE_NETRAGARD-20060624.txt

CWE    1
CWE-362

© 2013 SecPod Technologies