Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-5044

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2011-5044
Last Modified 02 Jan 2012 12:00:00
Published 30 Dec 2011 02:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2011-5044

Summary

SopCast 3.4.7.45585 uses weak permissions (Everyone:Full Control) for Diagnose.exe, which allows local users to execute arbitrary code by replacing Diagnose.exe with a Trojan horse program.

Vulnerable Systems

Application

  • Sopcast 3.4.7.45585


References

XF - sopcast-diagnose-priv-esc(71622)

MISC - http://www.zeroscience.mk/en/vulnerabilities/ZSL-2011-5062.php

OSVDB - 77724

EXPLOIT-DB - 18201

SECUNIA - 40940


Last Updated: 27 May 2016 10:57:58