CVE-2007-5350
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
0.4%
Unspecified vulnerability in the Windows Advanced Local Procedure Call (ALPC) in the kernel in Microsoft Windows Vista allows local users to gain privileges via unspecified vectors involving “legacy reply paths.”
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:gold:*:*:*:*:*:* |
| microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:gold:x64:*:*:*:*:* |
References
secunia.com/advisories/28015
www.kb.cert.org/vuls/id/601073
www.securityfocus.com/archive/1/485268/100/0/threaded
www.securityfocus.com/bid/26757
www.securitytracker.com/id?1019075
www.us-cert.gov/cas/techalerts/TA07-345A.html
www.vupen.com/english/advisories/2007/4182
docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-066
exchange.xforce.ibmcloud.com/vulnerabilities/38729
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3912
Related
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
0.4%