Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2004-2504 | First vendor Publication | 2004-12-31 |
Vendor | Cve | Last vendor Modification | 2017-07-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 7.2 | Attack Range | Local |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 3.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2504 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 7 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
12158 | MDaemon File Creation Local Privilege Escalation Alt-N MDaemon contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is triggered when a new file is created, which opens a notepad window. Then, using the new notepad window, cmd.exe is opened from the Windows Directory, which will open a command shell with System privileges. This flaw may lead to a loss of integrity. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2004-11-24 | Name : The remote mail server is prone to a local privilege escalation vulnerability. File : mdaemon_local_privileges.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:02:38 |
|
2021-04-22 01:02:50 |
|
2020-05-23 00:16:11 |
|
2017-07-11 12:01:45 |
|
2016-06-28 15:12:06 |
|
2016-04-26 13:10:20 |
|
2014-02-17 10:29:28 |
|
2013-05-11 11:49:17 |
|