Lucene search
HistoryMar 02, 2007 - 9:18 p.m.
CVE-2007-1194
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Norman SandBox Analyzer does not use the proper range for Interrupt Descriptor Table (IDT) entries, which allows local users to determine that the local machine is an emulator, or a similar environment not based on a physical Intel processor, which allows attackers to produce malware that is more difficult to analyze.
Affected configurations
Node
normannorman_sandbox_analyzer
| Vendor | Product | Version | CPE |
|---|---|---|---|
| norman | norman_sandbox_analyzer | * | cpe:2.3:a:norman:norman_sandbox_analyzer:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2007-1194
2007-03-02 19:00:00
cve
cve
CVE-2007-1194
2007-03-02 21:18:00
securityvulns
securityvulns
Norman SandBox Analyzer detection
2007-02-28 00:00:00
prion
prion
Code injection
2007-03-02 21:18:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.1
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2007-1194