Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA10246
HistoryFeb 24, 2011 - 12:00 a.m.

KLA10246 LPE vulnerability in Lunascape

2011-02-2400:00:00
Kaspersky Lab
threats.kaspersky.com
20

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

An untrusted path vulnerability was found in Lunascape. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via DLL hijacking.

Original advisories

Related products

Lunascape

CVE list

CVE-2011-0452 high

Solution

Update to latest version

Impacts

  • PE

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Affected Products

  • Lunascape versions 6.4.2 and earlier

Related

prion 1
nvd 1
jvn 1
cve 1
cvelist 1
prion
prion
Design/Logic Flaw
2011-02-24 21:00:00
nvd
nvd
CVE-2011-0452
2011-02-24 21:00:01
jvn
jvn
JVN#38362957: Lunascape may insecurely load executable files
2011-02-23 00:00:00
cve
cve
CVE-2011-0452
2011-02-24 21:00:01
cvelist
cvelist
CVE-2011-0452
2011-02-24 20:00:00

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for KLA10246
prion1nvd1jvn1cve1cvelist1