Lucene search

[email protected]CVE-2007-0211

HistoryFeb 13, 2007 - 8:28 p.m.

CVE-2007-0211

2007-02-1320:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

windows

server 2003

hardware detection

privilege escalation

cve-2007-0211

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

The hardware detection functionality in the Windows Shell in Microsoft Windows XP SP2 and Professional, and Server 2003 SP1 allows local users to gain privileges via an unvalidated parameter to a function related to the “detection and registration of new hardware.”

CPENameOperatorVersion
microsoft:windows_xpmicrosoft windows xpeq*
microsoft:windows_2003_servermicrosoft windows 2003 servereqsp1

CPE	Name	Operator	Version
microsoft:windows_xp	microsoft windows xp	eq	*
microsoft:windows_2003_server	microsoft windows 2003 server	eq	sp1

References

secunia.com/advisories/24126

www.kb.cert.org/vuls/id/240796

www.osvdb.org/31890

www.securityfocus.com/bid/22481

www.securitytracker.com/id?1017633

www.us-cert.gov/cas/techalerts/TA07-044A.html

www.vupen.com/english/advisories/2007/0575

docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-006

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A224

6.6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2007-0211

nessus1 cert1 prion1 securityvulns2