Lucene search

[email protected]CVE-2007-0333

HistoryJan 18, 2007 - 2:28 a.m.

CVE-2007-0333

2007-01-1802:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

agnitum

outpost firewall

security

bypass

access restrictions

trojan horse

nvd

6.5 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Agnitum Outpost Firewall PRO 4.0 allows local users to bypass access restrictions and insert Trojan horse drivers into the product’s installation directory by creating links using FileLinkInformation requests with the ZwSetInformationFile function, as demonstrated by modifying SandBox.sys.

CPENameOperatorVersion
agnitum:outpost_firewallagnitum outpost firewalleq4.0

CPE	Name	Operator	Version
agnitum:outpost_firewall	agnitum outpost firewall	eq	4.0

References

osvdb.org/33480

securityreason.com/securityalert/2163

www.matousec.com/info/advisories/Outpost-Bypassing-Self-Protection-using-file-links.php

www.securityfocus.com/archive/1/456973/100/0/threaded

www.securityfocus.com/bid/22069

exchange.xforce.ibmcloud.com/vulnerabilities/31529

6.5 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

0.4%

JSON

Related for CVE-2007-0333

securityvulns1 prion1 cvelist1