CVE-2005-3198

Webroot Desktop Firewall before 1.3.0build52 allows local users to disable the firewall, even when password protection is enabled, via certain DeviceIoControl commands.

CVSS v2.0 4.6 MEDIUM

4.6^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 3.9 / Impact : 6.4

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html
http://secunia.com/advisories/15745/	Vendor Advisory
http://secunia.com/secunia_research/2005-10/advisory/	Vendor Advisory
http://securityreason.com/securityalert/55
http://securitytracker.com/id?1015012
http://support.webroot.com/ics/support/KBAnswer.asp?questionID=2332
http://www.osvdb.org/19869
http://www.securityfocus.com/bid/15016
http://www.vupen.com/english/advisories/2005/1973
https://exchange.xforce.ibmcloud.com/vulnerabilities/22530
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html
http://secunia.com/advisories/15745/	Vendor Advisory
http://secunia.com/secunia_research/2005-10/advisory/	Vendor Advisory
http://securityreason.com/securityalert/55
http://securitytracker.com/id?1015012
http://support.webroot.com/ics/support/KBAnswer.asp?questionID=2332
http://www.osvdb.org/19869
http://www.securityfocus.com/bid/15016
http://www.vupen.com/english/advisories/2005/1973
https://exchange.xforce.ibmcloud.com/vulnerabilities/22530

Configurations

Configuration 1 (hide)

cpe:2.3:a:webroot_software:desktop_firewall:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:01

Type	Values Removed	Values Added
References	~~() http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html -~~	() http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html -
References	~~() http://secunia.com/advisories/15745/ - Vendor Advisory~~	() http://secunia.com/advisories/15745/ - Vendor Advisory
References	~~() http://secunia.com/secunia_research/2005-10/advisory/ - Vendor Advisory~~	() http://secunia.com/secunia_research/2005-10/advisory/ - Vendor Advisory
References	~~() http://securityreason.com/securityalert/55 -~~	() http://securityreason.com/securityalert/55 -
References	~~() http://securitytracker.com/id?1015012 -~~	() http://securitytracker.com/id?1015012 -
References	~~() http://support.webroot.com/ics/support/KBAnswer.asp?questionID=2332 -~~	() http://support.webroot.com/ics/support/KBAnswer.asp?questionID=2332 -
References	~~() http://www.osvdb.org/19869 -~~	() http://www.osvdb.org/19869 -
References	~~() http://www.securityfocus.com/bid/15016 -~~	() http://www.securityfocus.com/bid/15016 -
References	~~() http://www.vupen.com/english/advisories/2005/1973 -~~	() http://www.vupen.com/english/advisories/2005/1973 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/22530 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/22530 -

Information

Published : 2005-10-14 10:02

Updated : 2024-11-21 00:01

NVD link : CVE-2005-3198

Mitre link : CVE-2005-3198

CVE.ORG link : CVE-2005-3198

JSON object : View

Products Affected

webroot_software

desktop_firewall

CWE

NVD-CWE-Other

4.6 /10