Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4785

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4785
Last Modified 05 Sep 2008 05:29:07
Published 10 Sep 2007 05:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4785

Summary

Sony Micro Vault Fingerprint Access Software, as distributed with Sony Micro Vault USM-F USB flash drives, installs a driver that hides a directory under %WINDIR%, which might allow remote attackers to bypass malware detection by placing files in this directory.

Vulnerable Systems

Application

  • Sony Micro Vault Fingerprint Access Software


References

BUGTRAQ - 20070901 Re: Sony: The Return Of The Rootkit

BUGTRAQ - 20070831 Re: Sony: The Return Of The Rootkit

BUGTRAQ - 20070830 Re: Sony: The Return Of The Rootkit

BUGTRAQ - 20070829 Sony: The Return Of The Rootkit

MISC - http://www.f-secure.com/weblog/archives/archive-082007.html#00001266

MISC - http://www.f-secure.com/weblog/archives/archive-082007.html#00001263

MISC - http://www.computerdefense.org/?p=380

MISC - http://observed.de/?entnum=101

MISC - http://hiltont.blogspot.com/2007/08/sony-rootkit-version-2.html

SREASON - 3118


Last Updated: 27 May 2016 10:45:58