[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249622

 
 

909

 
 

195521

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-0436Date: (C)2007-02-03   (M)2024-02-22


Barron McCann X-Kryptor Driver BMS1446HRR (Xgntr BMS1351 Install BMS1472) in X-Kryptor Secure Client does not drop privileges when launching an Explorer window in response to a help command, which allows local users to gain LocalSystem privileges via interactive use of Explorer.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.6
Exploit Score: 3.9
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-22424
SECUNIA-24045
OSVDB-33110
ADV-2007-0496
http://jvn.jp/niscc/NISCC-462660/index.html
http://www.barronmccann.com/ISec/s2pressrelease.asp?PRID=141&S2ID=14
http://www.bemacpromotions.com/files/xkpatch462660.zip
http://www.cpni.gov.uk/Products/advisories/default.aspx?id=al-20070129-0107.xml
http://www.cpni.gov.uk/Products/vulnerabilitydisclosures/default.aspx?id=va-20070129-0107.xml

CWE    1
CWE-264

© SecPod Technologies