ID CVE-2007-5143
Summary F-Secure Anti-Virus for Windows Servers 7.0 64-bit edition allows local users to bypass virus scanning by using the system32 directory to store a crafted (1) archive or (2) packed executable. NOTE: in many environments, this does not cross privilege boundaries because any process able to write to system32 could also shut off F-Secure Anti-Virus.
References
Vulnerable Configurations
  • cpe:2.3:o:microsoft:windows_2003_server:*:*:x64:*:*:*:*:*
    cpe:2.3:o:microsoft:windows_2003_server:*:*:x64:*:*:*:*:*
  • cpe:2.3:a:f-secure:f-secure_anti-virus:7.00:*:windows_servers:*:*:*:*:*
    cpe:2.3:a:f-secure:f-secure_anti-virus:7.00:*:windows_servers:*:*:*:*:*
CVSS
Base: 1.9 (as of 29-07-2017 - 01:33)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
LOCAL MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:L/AC:M/Au:N/C:N/I:P/A:N
refmap via4
bid 25824
confirm http://www.f-secure.com/security/fsc-2007-6.shtml
osvdb 41377
sectrack 1018745
secunia 26948
vupen ADV-2007-3277
xf fsecure-executables-security-bypass(36833)
Last major update 29-07-2017 - 01:33
Published 01-10-2007 - 05:17
Last modified 29-07-2017 - 01:33
Back to Top