Lucene search

[email protected]CVE-2005-0497

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0497

2005-05-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-0497

adp elite system max 9000

privilege escalation

.profile upload

nvd

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

56.0%

JSON

ADP Elite System Max 9000 allows remote authenticated users to gain privileges by uploading a .profile that sets the ADPROOT environment variable to the root directory.

CPENameOperatorVersion
adp:elite_system_max_9000adp elite system max 9000eq*

CPE	Name	Operator	Version
adp:elite_system_max_9000	adp elite system max 9000	eq	*

References

marc.info/?l=bugtraq&m=110901051420503&w=2

exchange.xforce.ibmcloud.com/vulnerabilities/20622

7.4 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

56.0%

JSON