Executive Summary

Informations
NameCVE-2003-1233First vendor Publication2003-12-31
VendorCveLast vendor Modification2017-07-10

Security-Database Scoring CVSS v2

Cvss vector : (AV:L/AC:L/Au:N/C:N/I:P/A:N)
Cvss Base Score2.1Attack RangeLocal
Cvss Impact Score2.9Attack ComplexityLow
Cvss Expoit Score3.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) \Device\PhysicalMemory or (2) to a drive letter using the subst command.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-1233

CWE : Common Weakness Enumeration

%idName

CPE : Common Platform Enumeration

TypeDescriptionCount
Application2

Open Source Vulnerability Database (OSVDB)

idDescription
60394Integrity Protection Driver (IPD) NtCreateSymbolicLinkObject Function File Ac...

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/6511
BUGTRAQ http://archives.neohapsis.com/archives/bugtraq/2003-01/0017.html
http://archives.neohapsis.com/archives/bugtraq/2003-01/0018.html
MISC http://www.phrack.org/show.php?p=59&a=16
XF https://exchange.xforce.ibmcloud.com/vulnerabilities/10979

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2017-07-11 12:01:21
  • Multiple Updates
2016-04-26 12:41:31
  • Multiple Updates
2013-05-11 11:54:18
  • Multiple Updates