CVE-2005-0515

2005-03-1805:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Smc.exe in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before launching the Log Viewer export functionality, which allows local users to corrupt arbitrary files by saving log files.

References

secunia.com/advisories/13577

secunia.com/secunia_research/2004-20/advisory/

www.securityfocus.com/bid/12842

www.webroot.com/services/mfp_advisory.php