CVE-2005-2890

Опубликовано: 14 сент. 2005

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

SecureOL VE2 1.05.1008 does not properly restrict public access to physical memory, which allows local users to bypass intended restrictions and gain access to the secured environment via direct access to the PhysicalMemory device.

Ссылки

http://cybermessageboard.xeran.com/secureol/viewtopic.php?t=26
Exploit
http://marc.info/?l=bugtraq&m=112610983428771&w=2
http://secunia.com/advisories/16739/
Patch
Vendor Advisory
http://www.securityfocus.com/bid/14768
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/22205
http://cybermessageboard.xeran.com/secureol/viewtopic.php?t=26
Exploit
http://marc.info/?l=bugtraq&m=112610983428771&w=2
http://secunia.com/advisories/16739/
Patch
Vendor Advisory
http://www.securityfocus.com/bid/14768
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/22205

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:secureol:ve2:1.05.1008:*:*:*:*:*:*:*

EPSS

Процентиль: 32%

0.00125

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6c37-r4j2-w535

github

почти 4 года назад