CVE-2007-5352

EPSS 3.19%
Veröffentlicht 08.01.2008 20:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle secure@microsoft.com
Teams Watchlist Login
Unerledigt Login

Unspecified vulnerability in Local Security Authority Subsystem Service (LSASS) in Microsoft Windows 2000 SP4, XP SP2, and Server 2003 SP1 and SP2 allows local users to gain privileges via a crafted local procedure call (LPC) request.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000 Updatesp4

Microsoft ≫ Windows 2003 Server Versionsp1

Microsoft ≫ Windows 2003 Server Versionsp2

Microsoft ≫ Windows Xp Updatesp2

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	3.19%	0.865

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://www.securityfocus.com/archive/1/486317/100/0/threaded

http://www.us-cert.gov/cas/techalerts/TA08-008A.html

US Government Resource

http://secunia.com/advisories/28341

Patch

http://securitytracker.com/id?1019165

http://www.kb.cert.org/vuls/id/410025

US Government Resource

http://www.securityfocus.com/bid/27099

http://www.vupen.com/english/advisories/2008/0070

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-002

https://exchange.xforce.ibmcloud.com/vulnerabilities/39233

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5408

https://nvd.nist.gov/vuln/detail/CVE-2007-5352

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-5352

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-5352

EUVD