4.6

CVE-2004-2730

Sysinternals PsTools before 2.05, including (1) PsExec before 1.54, (2) PsGetsid before 1.41, (3) PsInfo before 1.61, (4) PsKill before 1.03, (5) PsList before 1.26, (6) PsLoglist before 2.51, (7) PsPasswd before 1.21, (8) PsService before 2.12, (9) PsSuspend before 1.05, and (10) PsShutdown before 2.32, does not properly disconnect from remote IPC$ and ADMIN$ shares, which allows local users to access the shares with elevated privileges by using the existing share mapping.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftPsexec Version <= 1.53
MicrosoftPsgetsid Version <= 1.40
MicrosoftPsinfo Version <= 1.60
MicrosoftPskill Version <= 1.02
MicrosoftPslist Version <= 1.25
MicrosoftPsloglist Version <= 2.50
MicrosoftPspasswd Version <= 1.20
MicrosoftPsservice Version <= 2.11
MicrosoftPsshutdown Version <= 2.31
MicrosoftPssuspend Version <= 1.04
MicrosoftSysinternals Pstools Version <= 2.04
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.51% 0.71
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/12108
Vendor Advisory
http://securitytracker.com/id?1010737
http://www.osvdb.org/8140
http://www.securityfocus.com/bid/10759
Patch
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=28304
https://exchange.xforce.ibmcloud.com/vulnerabilities/16743