7.2
CVE-2007-2229
- EPSS 1.55%
- Veröffentlicht 12.06.2007 19:30:00
- Zuletzt bearbeitet 16.06.2026 22:39:10
- Quelle secure@microsoft.com
- CVE-Watchlists
- Unerledigt
Microsoft Windows Vista uses insecure default permissions for unspecified "local user information data stores" in the registry and the file system, which allows local users to obtain sensitive information such as administrative passwords, aka "Permissive User Information Store ACLs Information Disclosure Vulnerability."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows Vista Updategold
Microsoft ≫ Windows Vista Updategold Editionx64
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.55% | 0.718 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.2 | 3.9 | 10 |
AV:L/AC:L/Au:N/C:C/I:C/A:C
|
http://www.securityfocus.com/archive/1/471947/100/0/threaded
http://www.us-cert.gov/cas/techalerts/TA07-163A.html
http://osvdb.org/35344
http://secunia.com/advisories/25623
http://www.securityfocus.com/bid/24411
http://www.securitytracker.com/id?1018225
http://www.vupen.com/english/advisories/2007/2152
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-032
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1529