Lucene search

[email protected]NVD:CVE-2007-6744

HistoryJan 19, 2012 - 7:55 p.m.

CVE-2007-6744

2012-01-1919:55:00

CWE-200

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Flexera Macrovision InstallShield before 2008 sends a digital-signature password to an unintended application during certain signature operations involving .spc and .pvk files, which might allow local users to obtain sensitive information via unspecified vectors, related to an incorrect interaction between InstallShield and Signcode.exe.

Affected configurations

NVD

Node

flexerasoftwareinstallshieldRange≤1.0

flexerasoftwareinstallshieldRange≤2.0

flexerasoftwareinstallshieldRange≤3.0

flexerasoftwareinstallshieldRange≤12

flexerasoftwareinstallshieldMatch10.5

flexerasoftwareinstallshieldMatch11

flexerasoftwareinstallshieldMatch11.5

References

kb.flexerasoftware.com/selfservice/microsites/search.do?cmd=displayKC&docType=kc&externalId=Installation-InstallShield-InstallShield2008Premier-Public-ProductInfo-IS2008PremProReleaseNotes2pdf&sliceId=pdfPage_42

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2007-6744

cve1 cvelist1 prion1