Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2382

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2005-2382
Last Modified 05 Sep 2008 04:51:36
Published 26 Jul 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2382

Summary

Oray PeanutHull 3.0.1.0 and earlier does not properly drop SYSTEM privileges when launched from the system tray, which allows local users to gain privileges by accessing the Help functionality.

Vulnerable Systems

Application

  • Oray Peanuthull 3.0.1.0


References

MISC - http://secway.org/advisory/AD20050720EN.txt

BUGTRAQ - 20050720 PeanutHull Local Privilege Escalation Vulnerability

BID - 14330

SECUNIA - 16124


Last Updated: 27 May 2016 10:40:30