Vulnerabilities > CVE-2005-2597 - Local Privilege Escalation vulnerability in AOL Client Software 9.0
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
AOL Client Software 9.0 uses insecure permissions for its installation path, which allows local users to execute arbitrary code with SYSTEM privileges by replacing ACSD.exe with a malicious program.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |