Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2554

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-2554
Last Modified 05 Sep 2008 04:44:28
Published 31 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-2554

Summary

Novell Client Firewall (NCF) 2.0, as based on the Agnitum Outpost Firewall, allows local users to execute arbitrary code with SYSTEM privileges by opening the NCF tray icon and using the Help functionality to launch programs with SYSTEM privileges.

Vulnerable Systems

Application

  • Novell Client Firewall 2.0


References

XF - ncf-tray-icon-gain-privileges(15367)

BID - 9441

OSVDB - 4120

CIAC - O-090

CONFIRM - http://support.novell.com/cgi-bin/search/searchtid.cgi?/10090585.htm

SECTRACK - 1008755

SECUNIA - 11014


Last Updated: 27 May 2016 10:39:32