PT-2002-2591 · Microsoft+1 · Event Viewer+1
Published
2002-12-31
·
Updated
2024-02-15
·
CVE-2002-1869
CVSS v2.0
2.1
Low
| Vector | AV:L/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Heysoft EventSave versions 5.1 through 5.2
Heysoft EventSave+ versions 5.1 through 5.2
Description
The issue allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer, because the software does not check whether the log file can be written to.
Recommendations
For Heysoft EventSave versions 5.1 through 5.2, consider implementing a check to ensure the log file can be written to before attempting to record events.
For Heysoft EventSave+ versions 5.1 through 5.2, consider implementing a check to ensure the log file can be written to before attempting to record events.
As a temporary workaround, consider restricting access to the log file to minimize the risk of exploitation.
Fix
Improper Locking
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Heysoft Eventsave
Event Viewer