CVE-2004-1624

EPSS 0.05%
Veröffentlicht 21.10.2004 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via (1) the help topic interface in CCW32.exe, which launches Notepad, or (2) the help button in the Carbon Copy Scheduler (CCSched.exe).

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Altiris ≫ Carbon Copy Version5.0

Altiris ≫ Carbon Copy Version6.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.112

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://marc.info/?l=bugtraq&m=109846296406459&w=2

http://secunia.com/advisories/12962

Vendor Advisory

http://www.securityfocus.com/bid/11500

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/17838

https://nvd.nist.gov/vuln/detail/CVE-2004-1624

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-1624

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-1624

EUVD