7.2

CVE-2007-5761

EPSS 0.05%
Veröffentlicht 09.01.2008 00:46:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The NantSys device 5.0.0.115 in Motorola netOctopus 5.1.2 build 1011 has weak permissions for the \\.\NantSys device interface (nantsys.sys), which allows local users to gain privileges or cause a denial of service (system crash), as demonstrated by modifying the SYSENTER_EIP_MSR CPU Model Specific Register (MSR) value.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 10

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Motorola ≫ Netoctopus Version5.1.2_build_1011

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.05%	0.111

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=636

http://secunia.com/advisories/28366

Patch

Vendor Advisory

http://securitytracker.com/id?1019161

http://www.netopia.com/support/software/technotes/netoctopus/Removing_the_nantsys_Driver.pdf

Patch

http://www.securityfocus.com/bid/27175

Patch

http://www.vupen.com/english/advisories/2008/0062

https://exchange.xforce.ibmcloud.com/vulnerabilities/39503

https://nvd.nist.gov/vuln/detail/CVE-2007-5761

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-5761

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-5761

EUVD