Vulnerabilities > CVE-2005-4590 - Unspecified vulnerability in SPB Kiosk Engine 1.0.0.1
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Spb Kiosk Engine 1.0.0.1 allows local users to bypass restrictions on allowed applications via (1) removable media containing a program that will execute because of the autorun setting and (2) applications that are able to invoke other applications, as demonstrated by a file: URL specifying a .exe file.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://secunia.com/advisories/18243
- http://secunia.com/advisories/18243
- http://www.airscanner.com/security/05083102_kioskremove.htm
- http://www.airscanner.com/security/05083102_kioskremove.htm
- http://www.securityfocus.com/archive/1/420450/100/0/threaded
- http://www.securityfocus.com/archive/1/420450/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23905
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23905