Vulnerabilities > CVE-2004-2676 - Unspecified vulnerability in Webroot Software SPY Sweeper Enterprise 1.5.1Build3698

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

webroot-software

NVD

Published: 2004-12-31

Updated: 2024-11-20

Summary

The Spy Sweeper Enterprise Client (SpySweeperTray.exe) in WebRoot Spy Sweeper before 2.0 does not drop privileges when using the help functionality, which allows local users to gain privileges.

Vulnerable Configurations

Part	Description	Count
Application	Webroot_Software Webroot Software SPY Sweeper Enterprise 1.5.1_Build_3698	1

References

http://secunia.com/advisories/13187
http://secunia.com/advisories/13187
http://secunia.com/secunia_research/2004-14/advisory/
http://secunia.com/secunia_research/2004-14/advisory/
http://securitytracker.com/id?1012652
http://securitytracker.com/id?1012652
http://www.osvdb.org/12534
http://www.osvdb.org/12534
https://exchange.xforce.ibmcloud.com/vulnerabilities/18628
https://exchange.xforce.ibmcloud.com/vulnerabilities/18628