CVE-2007-0333

Published Jan 18, 2007

Last updated 6 years ago

Overview

Description: Agnitum Outpost Firewall PRO 4.0 allows local users to bypass access restrictions and insert Trojan horse drivers into the product's installation directory by creating links using FileLinkInformation requests with the ZwSetInformationFile function, as demonstrated by modifying SandBox.sys.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:agnitum:outpost_firewall:4.0:*:pro:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "672B053D-A9A6-441F-B04A-E654C1445A16"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References