CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
5.1%
ICQLite 2003a creates the ICQ Lite directory with an ACE for “Full Control” privileges for Interactive Users, which allows local users to gain privileges as other users by replacing the executables with malicious programs.