CVE-2006-1381

Опубликовано: 24 мар. 2006

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Trend Micro OfficeScan 5.5, and probably other versions before 6.5, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying tmlisten.exe.

Ссылки

http://secunia.com/advisories/11576
Vendor Advisory
http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english
URL Repurposed
http://www.vupen.com/english/advisories/2006/1041
https://exchange.xforce.ibmcloud.com/vulnerabilities/25415
http://secunia.com/advisories/11576
Vendor Advisory
http://www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english
URL Repurposed
http://www.vupen.com/english/advisories/2006/1041
https://exchange.xforce.ibmcloud.com/vulnerabilities/25415

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:trend_micro:officescan:5.5:*:*:*:*:*:*:*

EPSS

Процентиль: 59%

0.00384

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-cw6q-f999-4vr6

github

почти 4 года назад