Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0115

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-0115
Last Modified 05 Sep 2008 04:37:34
Published 03 Mar 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0115

Summary

VirtualPC_Services in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServices_Log temporary file.

Vulnerable Systems

Application

  • Microsoft Virtual Pc 6.0

  • Microsoft Virtual Pc 6.1

  • Microsoft Virtual Pc 6.2


References

BID - 9632

MS - MS04-005

ATSTAKE - A021004-1

XF - virtual-pc-gain-privileges(15113)

OSVDB - 3893

CIAC - O-076


Last Updated: 27 May 2016 10:38:28