Vulnerabilities > CVE-2003-0641 - Unspecified vulnerability in Watchguard Serverlock 2.0/2.0.1/2.0.2

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
watchguard

Summary

WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess() function, as demonstrated using (1) a DLL injection attack, (2) ZwSetSystemInformation, and (3) API hooking in OpenProcess.

Vulnerable Configurations

Part Description Count
Application
Watchguard
3