Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2005-0515 | First vendor Publication | 2005-05-18 |
Vendor | Cve | Last vendor Modification | 2024-11-20 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:L/Au:N/C:N/I:P/A:N) | |||
---|---|---|---|
Cvss Base Score | 2.1 | Attack Range | Local |
Cvss Impact Score | 2.9 | Attack Complexity | Low |
Cvss Expoit Score | 3.9 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Smc.exe in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before launching the Log Viewer export functionality, which allows local users to corrupt arbitrary files by saving log files. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0515 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
14859 | My Firewall Plus Smc.exe Log Viewer Arbitrary File Corruption My Firewall Plus contains a flaw in the log viewer as it does not properly drop its privileges. The issue is triggered when using the log viewer's export functionality to save log files, allowing a local attacker to overwrite arbitrary files with logging information. |
Sources (Detail)
Source | Url |
---|
Alert History
Date | Informations |
---|---|
2024-11-28 23:22:10 |
|
2024-11-28 12:06:48 |
|
2021-05-04 12:02:48 |
|
2021-04-22 01:03:01 |
|
2020-05-23 00:16:22 |
|
2016-04-26 13:18:30 |
|
2013-05-11 11:21:44 |
|