{ "id": "CVE-2004-2430", "sourceIdentifier": "cve@mitre.org", "published": "2004-12-31T05:00:00.000", "lastModified": "2024-11-20T23:53:20.263", "vulnStatus": "Modified", "cveTags": [], "descriptions": [ { "lang": "en", "value": "Trend OfficeScan Corporate Edition 5.58 and possibly earler does not drop privileges when opening a help window from a virus detection pop-up window, which allows local users to gain SYSTEM privileges." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "baseScore": 7.2, "accessVector": "LOCAL", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE" }, "baseSeverity": "HIGH", "exploitabilityScore": 3.9, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": true, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "NVD-CWE-Other" } ] } ], "configurations": [ { "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:3.0:*:corporate:*:*:*:*:*", "matchCriteriaId": "4013BF7E-DE8F-4941-BF15-D17C8C88DB78" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_3.5:*:*:*:*:*:*:*", "matchCriteriaId": "BE60F5D9-35D0-4D0E-85D1-EE71E533622F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_3.11:*:*:*:*:*:*:*", "matchCriteriaId": "BF74A292-2B1B-43FC-AA82-CFB04D7644E3" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_3.13:*:*:*:*:*:*:*", "matchCriteriaId": "46575AE8-8718-44D8-AF5C-14F7981B3238" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_3.54:*:*:*:*:*:*:*", "matchCriteriaId": "A79FBAAA-D6B8-4A05-B8E1-D7549207EA5B" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_5.02:*:*:*:*:*:*:*", "matchCriteriaId": "D6CE3BB4-54BA-48DE-9CFC-C2241D99DA67" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_5.5:*:*:*:*:*:*:*", "matchCriteriaId": "E6F25D89-826B-4FA0-AA8F-CD729F00F9BE" }, { "vulnerable": true, "criteria": "cpe:2.3:a:trend_micro:officescan:corporate_5.58:*:*:*:*:*:*:*", "matchCriteriaId": "BEE87037-D7CC-480B-BBD2-F1802294D4F2" } ] } ] } ], "references": [ { "url": "http://archives.neohapsis.com/archives/bugtraq/2004-06/0117.html", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] }, { "url": "http://secunia.com/advisories/11806", "source": "cve@mitre.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://uk.trendmicro-europe.com/enterprise/support/knowledge_base_detail.php?solutionId=20118", "source": "cve@mitre.org", "tags": [ "Patch" ] }, { "url": "http://www.osvdb.org/6840", "source": "cve@mitre.org", "tags": [ "Patch" ] }, { "url": "http://www.securityfocus.com/bid/10503", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16375", "source": "cve@mitre.org" }, { "url": "http://archives.neohapsis.com/archives/bugtraq/2004-06/0117.html", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Vendor Advisory" ] }, { "url": "http://secunia.com/advisories/11806", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://uk.trendmicro-europe.com/enterprise/support/knowledge_base_detail.php?solutionId=20118", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Patch" ] }, { "url": "http://www.osvdb.org/6840", "source": "af854a3a-2127-422b-91ae-364da2661108", "tags": [ "Patch" ] }, { "url": "http://www.securityfocus.com/bid/10503", "source": "af854a3a-2127-422b-91ae-364da2661108" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16375", "source": "af854a3a-2127-422b-91ae-364da2661108" } ] }