Lucene search
MitreCVE-2005-2145HistoryJul 05, 2005 - 4:00 a.m.
CVE-2005-2145
2005-07-0504:00:00
mitre
web.nvd.nist.gov
26
prevx pro
kernel driver
message verification
local users
bypass protection
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
The kernel driver in Prevx Pro 2005 1.0 does not verify the source of certain messages, which allows local users to bypass protection by sending certain messages to the driver, as demonstrated by sending an “allow” message to bypass a warning message.
Affected configurations
Node
prevxprevx_pro_2005Match1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| prevx | prevx_pro_2005 | 1.0 | cpe:2.3:a:prevx:prevx_pro_2005:1.0:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2005-2145
2005-07-05 04:00:00
cvelist
cvelist
CVE-2005-2145
2005-07-05 04:00:00
nessus
nessus
Prevx Pro 2005 <= 1.0.0.1 Multiple Vulnerabilities
2005-07-05 00:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2005-2145