Vulnerabilities > CVE-2005-1372 - Local Privilege Escalation vulnerability in BakBone NetVault NVStatsMngr.EXE

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

bakbone

exploit available

NVD

Published: 2005-05-03

Updated: 2017-07-11

Summary

nvstatsmngr.exe process in BakBone NetVault 7.1 does not properly drop privileges before opening files, which allows local users to gain privileges via the Help menu.

Vulnerable Configurations

Part	Description	Count
Application	Bakbone Bakbone Netvault 7.1.1 Bakbone Netvault 7.3	2

Exploit-Db

description	BakBone NetVault 7.1 Local Privilege Escalation Exploit. CVE-2005-1372. Local exploit for windows platform
id	EDB-ID:1161
last seen	2016-01-31
modified	2005-04-27
published	2005-04-27
reporter	Reed Arvin
source	https://www.exploit-db.com/download/1161/
title	BakBone NetVault 7.1 - Local Privilege Escalation Exploit

Summary

Vulnerable Configurations

Exploit-Db

References