PT-2002-2846 · Unknown · Integrity Protection Driver

Publicado

2002-12-31

Atualizado

2008-09-05

CVE-2002-2126

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Integrity Protection Driver (IPD) version 1.2

Description: The issue allows local users to insert malicious code by exploiting the restrictEnabled feature in the Integrity Protection Driver (IPD), which delays driver installation for 20 minutes. This can be achieved by setting the system clock to an earlier time.

Recommendations: For IPD version 1.2, consider disabling the restrictEnabled feature until a patch is available to prevent the delay in driver installation and minimize the risk of malicious code insertion.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-2126

Produtos afetados

Integrity Protection Driver

PT-2002-2846 · Unknown · Integrity Protection Driver

CVE-2002-2126

Identificadores relacionados

Produtos afetados

Referências · 5