S24EvMon.exe in the Intel PROset/Wireless software, possibly 10.1.0.33, uses a S24EventManagerSharedMemory shared memory section with weak permissions, which allows local users to read or modify passwords or other data, or cause a denial of service.
CPE | Name | Operator | Version |
---|---|---|---|
proset_wireless | le | 10.1.0.33 |
secunia.com/advisories/20001
securityreason.com/securityalert/877
securitytracker.com/id?1016621
www.reversemode.com/index.php?option=com_content&task=view&id=10&Itemid=1
www.securityfocus.com/archive/1/433133/100/0/threaded
www.securityfocus.com/bid/17914
www.vupen.com/english/advisories/2006/1737
exchange.xforce.ibmcloud.com/vulnerabilities/26317