4.6

CVE-2004-0115

VirtualPC_Services in Microsoft Virtual PC for Mac 6.0 through 6.1 allows local attackers to truncate and overwrite arbitrary files, and execute arbitrary code, via a symlink attack on the VPCServices_Log temporary file.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftVirtual Pc Version6.0 Editionmac
MicrosoftVirtual Pc Version6.1 Editionmac
MicrosoftVirtual Pc Version6.2 Editionmac
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.53% 0.715
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.atstake.com/research/advisories/2004/a021004-1.txt
Vendor Advisory
http://www.ciac.org/ciac/bulletins/o-076.shtml
http://www.osvdb.org/3893
http://www.securityfocus.com/bid/9632
Patch
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-005
https://exchange.xforce.ibmcloud.com/vulnerabilities/15113