7.2

CVE-2006-1649

Exploit
The "restore to" selection in the "quarantine a file" capability of ESET NOD32 before 2.51.26 allows a restore to any directory that permits read access by the invoking user, which allows local users to create new files despite write-access directory permissions.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Eset SoftwareNod32 Antivirus Version1.0.11
Eset SoftwareNod32 Antivirus Version1.0.12
Eset SoftwareNod32 Antivirus Version1.0.13
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.48% 0.374
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/19054
http://securityreason.com/securityalert/672
http://securitytracker.com/id?1015867
http://www.osvdb.org/24393
http://www.securityfocus.com/archive/1/429892/100/0/threaded
http://www.securityfocus.com/bid/17374
Patch
Exploit
http://www.vupen.com/english/advisories/2006/1242
https://exchange.xforce.ibmcloud.com/vulnerabilities/25640