3.3

CVE-2002-1869

Heysoft EventSave 5.1 and 5.2 and Heysoft EventSave+ 5.1 and 5.2 does not check whether the log file can be written to, which allows attackers to prevent events from being recorded by opening the log file using an application such as Microsoft's Event Viewer.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HeysoftEventsave Version5.1
HeysoftEventsave Version5.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.32% 0.23
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 3.3 1.8 1.4
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:P/A:N
CWE-667 Improper Locking

The product does not properly acquire or release a lock on a resource, leading to unexpected resource state changes and behaviors.

http://securitytracker.com/id?1005517
Patch
Third Party Advisory
Broken Link
VDB Entry
http://www.heysoft.de/nt/eventlog/hsb01e.htm
Patch
Broken Link
http://www.iss.net/security_center/static/10535.php
Patch
Broken Link
http://www.securityfocus.com/bid/6095
Patch
Third Party Advisory
Broken Link
VDB Entry