PT-2004-3445 · Novell · Novell Client Firewall

Publicado

2004-12-31

Atualizado

2017-07-11

CVE-2004-2554

CVSS v2.0

7.2

Alta

Vetor

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Novell Client Firewall (NCF) version 2.0

Description The issue allows local users to execute arbitrary code with SYSTEM privileges. This can be achieved by opening the NCF tray icon and utilizing the Help functionality to launch programs with elevated privileges.

Recommendations For Novell Client Firewall (NCF) version 2.0, consider disabling the Help functionality in the NCF tray icon until a patch is available to prevent exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2004-2554

Produtos afetados

Novell Client Firewall

PT-2004-3445 · Novell · Novell Client Firewall

CVE-2004-2554

Identificadores relacionados

Produtos afetados

Referências · 8