CVE-2004-2430

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 7.2

EPSS Низкий

Описание

Trend OfficeScan Corporate Edition 5.58 and possibly earler does not drop privileges when opening a help window from a virus detection pop-up window, which allows local users to gain SYSTEM privileges.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2004-06/0117.html
Vendor Advisory
http://secunia.com/advisories/11806
Patch
Vendor Advisory
http://uk.trendmicro-europe.com/enterprise/support/knowledge_base_detail.php?solutionId=20118
Patch
http://www.osvdb.org/6840
Patch
http://www.securityfocus.com/bid/10503
https://exchange.xforce.ibmcloud.com/vulnerabilities/16375
http://archives.neohapsis.com/archives/bugtraq/2004-06/0117.html
Vendor Advisory
http://secunia.com/advisories/11806
Patch
Vendor Advisory
http://uk.trendmicro-europe.com/enterprise/support/knowledge_base_detail.php?solutionId=20118
Patch
http://www.osvdb.org/6840
Patch
http://www.securityfocus.com/bid/10503
https://exchange.xforce.ibmcloud.com/vulnerabilities/16375

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:trend_micro:officescan:3.0:*:corporate:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_3.5:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_3.11:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_3.13:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_3.54:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_5.02:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_5.5:*:*:*:*:*:*:*

cpe:2.3:a:trend_micro:officescan:corporate_5.58:*:*:*:*:*:*:*

EPSS

Процентиль: 20%

0.00064

Низкий

7.2 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-75wm-fxcm-grpj

github

почти 4 года назад