Vulnerabilities > CVE-2005-0352 - Local Privilege Escalation vulnerability in Woodstone Servers Alive 4.1/5.0

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
woodstone
NVD
Published: 2005-03-16
Updated: 2017-07-11

Summary

Servers Alive 4.1 and 5.0, when running as a service, does not drop SYSTEM privileges before loading local manual under the help menu, which allows local users to gain privileges.

Vulnerable Configurations

Part Description Count
Application
Woodstone
2

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/36676/serversAlive.txt
idPACKETSTORM:36676
last seen2016-12-05
published2005-03-22
reporterMichael Starks
sourcehttps://packetstormsecurity.com/files/36676/serversAlive.txt.html
titleserversAlive.txt

References