Lucene search

[email protected]CVE-2005-3197

HistoryOct 14, 2005 - 10:02 a.m.

CVE-2005-3197

2005-10-1410:02:00

[email protected]

web.nvd.nist.gov

cve-2005-3197

buffer overflow

pwiwrapper.dll

webroot desktop firewall

nvd

security vulnerability

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

Stack-based buffer overflow in PWIWrapper.dll for Webroot Desktop Firewall before 1.3.0build52 allows local users to execute arbitrary code as SYSTEM by sending a crafted DeviceIoControl command, then removing an allowed program from the firewall list.

Affected configurations

NVD

Node

webroot_softwaredesktop_firewallMatch1.3.0.43

CPENameOperatorVersion
webroot_software:desktop_firewallwebroot software desktop firewalleq1.3.0.43

CPE	Name	Operator	Version
webroot_software:desktop_firewall	webroot software desktop firewall	eq	1.3.0.43

References

archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html

secunia.com/advisories/15745/

secunia.com/secunia_research/2005-10/advisory/

securitytracker.com/id?1015012

support.webroot.com/ics/support/KBAnswer.asp?questionID=2332

www.osvdb.org/19868

www.securityfocus.com/bid/15016

www.vupen.com/english/advisories/2005/1973

exchange.xforce.ibmcloud.com/vulnerabilities/22529

7.2 High

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.8%

JSON

Related for CVE-2005-3197

cvelist1 nvd1