Lucene search
MitreCVE-2003-0641HistoryAug 27, 2003 - 4:00 a.m.
CVE-2003-0641
2003-08-2704:00:00
mitre
web.nvd.nist.gov
32
cve-2003-0641
watchguard
serverlock
windows 2000
security vulnerability
dll injection
api hooking
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
5.1%
WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess() function, as demonstrated using (1) a DLL injection attack, (2) ZwSetSystemInformation, and (3) API hooking in OpenProcess.
Affected configurations
Node
watchguardserverlockMatch2.0
ORwatchguardserverlockMatch2.0.1
ORwatchguardserverlockMatch2.0.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| watchguard | serverlock | 2.0 | cpe:2.3:a:watchguard:serverlock:2.0:*:*:*:*:*:*:* |
| watchguard | serverlock | 2.0.1 | cpe:2.3:a:watchguard:serverlock:2.0.1:*:*:*:*:*:*:* |
| watchguard | serverlock | 2.0.2 | cpe:2.3:a:watchguard:serverlock:2.0.2:*:*:*:*:*:*:* |
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.1
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2003-0641