Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0279

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2012-0279
Last Modified 14 Feb 2013 11:53:02
Published 01 May 2012 07:55:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0279

Summary

Quest Toad for Data Analysts 3.0.1 uses weak permissions (Everyone: Full Control) for the %COMMONPROGRAMFILES%\Quest Shared directory, which allows local users to gain privileges via a Trojan horse file.

Vulnerable Systems

Application

  • Quest Toad For Data Analysts 3.0.1


References

MISC - http://secunia.com/secunia_research/2012-13/

XF - quest-toad-insecure-permissions(75192)

BID - 53276

SECUNIA - 48663


Last Updated: 27 May 2016 10:56:28