Vulnerabilities > CVE-2005-2947 - Local Privilege Escalation vulnerability in KillProcess

CVSS 5.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

high complexity

killprocess

NVD

Published: 2005-09-16

Updated: 2017-07-11

Summary

Buffer overflow in KillProcess 2.20 and earlier allows user-assisted attackers to execute arbitrary code via an exe file with a long FileDescription in the version resource.

Vulnerable Configurations

Part	Description	Count
Application	Killprocess Killprocess Killprocess *	1

References

http://marc.info/?l=bugtraq&m=112629480300071&w=2
http://marc.info/?l=bugtraq&m=112629550418406&w=2
http://www.securityfocus.com/bid/14795
https://exchange.xforce.ibmcloud.com/vulnerabilities/22222