CVE-2011-0513

Exploit

EPSS 0.31%
Veröffentlicht 20.01.2011 19:00:11
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

DCR.sys driver in SecurStar DriveCrypt 5.4, 5.3, and earlier allows local users to execute arbitrary code via a crafted argument to the 0x00073800 IOCTL.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Securstar ≫ Drivecrypt Version <= 5.4

Securstar ≫ Drivecrypt Version4.6

Securstar ≫ Drivecrypt Version4.61

Securstar ≫ Drivecrypt Version5.0

Securstar ≫ Drivecrypt Version5.1

Securstar ≫ Drivecrypt Version5.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.31%	0.533

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://osvdb.org/70426

http://secunia.com/advisories/42881

Vendor Advisory

http://www.exploit-db.com/exploits/15972

Exploit

http://www.securityfocus.com/bid/45750

Exploit

http://www.vupen.com/english/advisories/2011/0084

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2011-0513

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2011-0513

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2011-0513

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2011-0513