Code injection

2006-03-2411:02:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Trend Micro PC-cillin Internet Security 2006 14.00.1485 and 14.10.0.1023, uses insecure DACLs for critical files, which allows local users to gain SYSTEM privileges by modifying executable programs such as (1) tmntsrv.exe and (2) tmproxy.exe.

CPENameOperatorVersion
pc-cillin_2006eq14.00.1485
pc-cillin_2006le14.10.0.1023

CPE	Name	Operator	Version
	pc-cillin_2006	eq	14.00.1485
	pc-cillin_2006	le	14.10.0.1023

References

secunia.com/advisories/19282

www.secumind.net/content/french/modules/news/article.php?storyid=9&sel_lang=english

www.vupen.com/english/advisories/2006/1042