PT-2002-2846 · Unknown · Integrity Protection Driver

Published

2002-12-31

Updated

2008-09-05

CVE-2002-2126

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions: Integrity Protection Driver (IPD) version 1.2

Description: The issue allows local users to insert malicious code by exploiting the restrictEnabled feature in the Integrity Protection Driver (IPD), which delays driver installation for 20 minutes. This can be achieved by setting the system clock to an earlier time.

Recommendations: For IPD version 1.2, consider disabling the restrictEnabled feature until a patch is available to prevent the delay in driver installation and minimize the risk of malicious code insertion.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-2126

Affected Products

Integrity Protection Driver

PT-2002-2846 · Unknown · Integrity Protection Driver

CVE-2002-2126

Related Identifiers

Affected Products

References · 5