CVE-2003-1169

Name of the Vulnerable Software and Affected Versions DATEV Nutzungskontrolle versions 2.1 through 2.2

Description The issue allows local users to bypass access restrictions by importing NukoInfo values in certain DATEV keys, which disables Nutzungskontrolle, due to insecure write permissions for critical registry keys.

Recommendations For versions 2.1 and 2.2, consider restricting write access to critical registry keys to prevent bypassing access restrictions. As a temporary workaround, monitor and limit the import of NukoInfo values in DATEV keys to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.