CVE-2003-1121

2005-03-1205:00:00

mitre

www.cve.org

AI Score

6.9

Confidence

High

EPSS

0.026

Percentile

90.5%

JSON

Services in ScriptLogic 4.01, and possibly other versions before 4.14, process client requests at raised privileges, which allows remote attackers to (1) modify arbitrary registry entries via the ScriptLogic RPC service (SLRPC) or (2) modify arbitrary configuration via the RunAdmin services (SLRAserver.exe and SLRAclient.exe).

References

www.kb.cert.org/vuls/id/231705

www.kb.cert.org/vuls/id/609137

www.kb.cert.org/vuls/id/CRDY-5EXQRP

www.kb.cert.org/vuls/id/CRDY-5EXQSV

www.securityfocus.com/bid/7475

www.securityfocus.com/bid/7477

exchange.xforce.ibmcloud.com/vulnerabilities/11920

exchange.xforce.ibmcloud.com/vulnerabilities/11921