Vulnerabilities > CVE-2005-4590 - Security Bypass vulnerability in SPB Kiosk Engine 1.0.0.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Spb Kiosk Engine 1.0.0.1 allows local users to bypass restrictions on allowed applications via (1) removable media containing a program that will execute because of the autorun setting and (2) applications that are able to invoke other applications, as demonstrated by a file: URL specifying a .exe file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |