3 matches found
CVE-2011-4434
Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 do not properly enforce AppLocker rules, which allows local users to bypass intended access restrictions via a 1 macro or 2 scripting feature in an application, as demonstrated by Microsoft Office applications and the...
Microsoft Windows AppLocker规则本地安全绕过漏洞(CVE-2011-4434)
Bugtraq ID: 50687 CVE ID:CVE-2011-4434 AppLocker是Windows 7和Windows Server 2008 R2中的一项新增功能,提供应用程序的访问控制。 通过AppLocker规则控制运行在Windows7或Windows Server 2008 R2上的应用程序时,本地用户可使用某些应用程序中的宏或脚本功能绕过AppLocker规则,如使用Microsoft Office来绕过这个限制。 因此%TEMP%或%system...
CVE-2011-4434
CVE-2011-4434 affects Windows 7 SP1 and Windows Server 2008 R2 SP1. It describes a local bypass of AppLocker rules via (1) Office macro or (2) scripting features, demonstrable with SANDBOX_INERT and LOAD_IGNORE_CODE_AUTHZ_LEVEL flags. Root cause: AppLocker not properly enforcing rules for certain...