Vulnerabilities > CVE-2005-2145 - Local Security vulnerability in Prevx PRO 2005 1.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The kernel driver in Prevx Pro 2005 1.0 does not verify the source of certain messages, which allows local users to bypass protection by sending certain messages to the driver, as demonstrated by sending an "allow" message to bypass a warning message.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | Windows |
| NASL id | PREVX_PRO_2005_MULT_VULNS.NASL |
| description | The remote host is running Prevx Pro 2005, an intrusion protection system for Windows. The installed version of Prevx Pro 2005 reportedly suffers from multiple vulnerabilities that allow local attackers to bypass the application |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 18616 |
| published | 2005-07-05 |
| reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/18616 |
| title | Prevx Pro 2005 <= 1.0.0.1 Multiple Vulnerabilities |