exploitDog

CVE-2015-6034

Опубликовано: 28 окт. 2015

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

EPSON Network Utility 4.10 uses weak permissions (Everyone: Full Control) for eEBSVC.exe, which allows local users to gain privileges via a Trojan horse file.

Ссылки

http://www.kb.cert.org/vuls/id/672500
Third Party Advisory
US Government Resource
https://www.epson.com/cgi-bin/Store/support/supAdvice.jsp?type=highlights&noteoid=288045
Patch
http://www.kb.cert.org/vuls/id/672500
Third Party Advisory
US Government Resource
https://www.epson.com/cgi-bin/Store/support/supAdvice.jsp?type=highlights&noteoid=288045
Patch

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:epson:network_utility:4.10:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.00073

Низкий

6.9 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-cv3h-r3vm-9fmm

github

больше 3 лет назад

EPSON Network Utility 4.10 uses weak permissions (Everyone: Full Control) for eEBSVC.exe, which allows local users to gain privileges via a Trojan horse file.

EPSS

Процентиль: 22%

0.00073

Низкий

6.9 Medium

CVSS2

Дефекты

CWE-264