Lucene search

[email protected]CVE-2005-2890

HistorySep 14, 2005 - 8:03 p.m.

CVE-2005-2890

2005-09-1420:03:00

[email protected]

web.nvd.nist.gov

cve-2005-2890

secureol ve2

physical memory

access restriction

nvd

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

SecureOL VE2 1.05.1008 does not properly restrict public access to physical memory, which allows local users to bypass intended restrictions and gain access to the secured environment via direct access to the PhysicalMemory device.

Affected configurations

NVD

Node

secureolve2Match1.05.1008

CPENameOperatorVersion
secureol:ve2secureol ve2eq1.05.1008

CPE	Name	Operator	Version
secureol:ve2	secureol ve2	eq	1.05.1008

References

cybermessageboard.xeran.com/secureol/viewtopic.php?t=26

marc.info/?l=bugtraq&m=112610983428771&w=2

secunia.com/advisories/16739/

www.securityfocus.com/bid/14768

exchange.xforce.ibmcloud.com/vulnerabilities/22205

4.6 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2005-2890

cvelist1 nvd1