CVE-2005-4708
8.1 High
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
37.9%
Adobe Macromedia MX 2004 products, Captivate, Contribute 2, Contribute 3, and eLicensing client install the Macromedia Licensing Service with the Users group permitted to configure the service, including the path to executable, which allows local users to execute arbitrary code as Local System.
References
secunia.com/advisories/15654
securitytracker.com/id?1014158
securitytracker.com/id?1014159
securitytracker.com/id?1014160
securitytracker.com/id?1014161
securitytracker.com/id?1014162
securitytracker.com/id?1014163
securitytracker.com/id?1014164
securitytracker.com/id?1014165
securitytracker.com/id?1014166
www.cs.princeton.edu/~sudhakar/papers/winval.pdf
www.kb.cert.org/vuls/id/953860
www.macromedia.com/devnet/security/security_zone/mpsb05-04.html
www.osvdb.org/17248
www.securityfocus.com/archive/1/423587/100/0/threaded
www.securityfocus.com/bid/13925
www.vupen.com/english/advisories/2005/0723
8.1 High
AI Score
Confidence
Low
7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.001 Low
EPSS
Percentile
37.9%