Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0545

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-0545
Last Modified 05 Sep 2008 04:46:36
Published 02 May 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-0545

Summary

Microsoft Windows XP Pro SP2 and Windows 2000 Server SP4 running Active Directory allow local users to bypass group policies that restrict access to hidden drives by using the browse feature in Office 10 applications such as Word or Excel, or using a flash drive. NOTE: this issue has been disputed in a followup post.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Xp


References

BID - 12641

BUGTRAQ - 20050223 Office 10 applications & flashdrives can be used to browse restricted drives

BUGTRAQ - 20050225 Re: Office 10 applications & flashdrives can be used to browse restricted


Last Updated: 27 May 2016 10:39:50