Vulnerabilities > CVE-2006-3973 - Local Privilege Escalation vulnerability in MY Firewall Plus MY Firewall Plus 5.0Build1119
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
My Firewall Plus 5.0 Build 1119 does not verify if explorer.exe is running before launching iexplore.exe from the "Test Your Firewall" feature, which allows local users to gain SYSTEM privileges.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 1 |
References
- http://secunia.com/advisories/21142
- http://secunia.com/secunia_research/2006-59/advisory
- http://securitytracker.com/id?1017267
- http://www.securityfocus.com/archive/1/452233/100/0/threaded
- http://www.securityfocus.com/bid/21228
- http://www.vupen.com/english/advisories/2006/4635
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30476