Vulnerability Name: CVE-2005-2940 (CCN-23094) Assigned: 2005-11-15 Published: 2005-11-15 Updated: 2008-09-05 Summary: Unquoted Windows search path vulnerability in Microsoft Antispyware 1.0.509 (Beta 1) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, involving the programs (1) GIANTAntiSpywareMain.exe, (2) gcASNotice.exe, (3) gcasServ.exe, (4) gcasSWUpdater.exe, or (5) GIANTAntiSpywareUpdater.exe. Note CVE-2005-2935 . CVSS v3 Severity: 5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L Exploitability Metrics: Attack Vector (AV): LocalAttack Complexity (AC): LowPrivileges Required (PR): NoneUser Interaction (UI): NoneScope: Scope (S): UnchangedImpact Metrics: Confidentiality (C): LowIntegrity (I): LowAvailibility (A): Low
CVSS v2 Severity: 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C 5.9 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C Exploitability Metrics: Access Vector (AV): LocalAccess Complexity (AC): LowAuthentication (Au): NoneImpact Metrics: Confidentiality (C): CompleteIntegrity (I): CompleteAvailibility (A): Complete
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P 3.8 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C Exploitability Metrics: Access Vector (AV): LocalAccess Complexity (AC): LowAthentication (Au): NoneImpact Metrics: Confidentiality (C): PartialIntegrity (I): PartialAvailibility (A): Partial
Vulnerability Type: CWE-Other Vulnerability Consequences: Gain Privileges References: Source: CCNUseless tidbit [ TZO-012006 ] Checkpoint VPN-1 SecureClient insecure usage of CreateProcess() Multiple improper file path handling issues CVE-2005-2935 CVE-2005-2936 CVE-2005-2938 CVE-2005-2939 CVE-2005-2940 CVE-2005-3663 CVE-2006-0255 CVE-2019-4245 RealNetworks Products Multiple Buffer Overflow Vulnerabilities Apple iTunes for Windows Improper CreateProcess() Call Lets Local Users Execute Arbitrary Code RealPlayer Improper CreateProcess() Call Lets Local Users Execute Arbitrary Code Kaspersky Anti-Virus for Windows File Servers Improper CreateProcess() Call Lets Local Users Execute Arbitrary Code VMware Workstation Improper CreateProcess() Call Lets Local Users Execute Arbitrary Code Microsoft AntiSpyware Improper CreateProcess() Call Lets Local Users Execute Arbitrary Code 1015226 RealNetworks Releases Product Updates. Apple - ITunes - Download iTunes Multiple Vendor Insecure Call to CreateProcess() Vulnerability 20051115 Multiple Vendor Insecure Call to CreateProcess() Vulnerability Microsoft AntiSpyware gsasDtServ.exe Path Subversion Privilege Escalation Apple iTunes iTunesHelper.exe Path Subversion Local Privilege Escalation Kaspersky Anti-Virus Search Path Subversion Local Privilege Escalation RealPlayer Path Subversion Local Privilege Escalation VMware Workstation Search Path Subversion Local Privilege Escalation Check Point VPN-1 SecureClient SR_Watchdog.exe Path Subversion Local Privilege Escalation Apple iTunes 6 For Windows Arbitrary Local Code Execution Vulnerability 15448 Multiple Vendor lpCommandLine Application Path Vulnerability Check Point VPN-1 SecureClient Path Specification Local Privilege Escalation Vulnerability multiple-vendor-insecure-createprocess(23094) Offensive Security Exploit Database [08-15-2012] IBM Cognos TM1 is affected by multiple vulnerabilities (CVE-2018-15494, CVE-2019-4245) Multiple vulnerabilities affect IBM Planning Analytics Vulnerable Configuration: Configuration 1 :cpe:/a:microsoft:antispyware:1.0.509:*:*:*:*:*:*:* Configuration CCN 1 :cpe:/a:apple:itunes:4.7.1.30:*:*:*:*:*:*:* OR cpe:/a:microsoft:antispyware:1.0.509:beta1:*:*:*:*:*:* OR cpe:/a:checkpoint:vpn-1_secureclient:-:*:*:*:*:*:*:* OR cpe:/a:norman:norman_virus_control:5.90:*:*:*:*:*:*:* OR cpe:/a:agnitum:outpost_firewall:*:*:pro:*:*:*:*:* OR cpe:/a:agnitum:outpost_security_suite:6.7.3.3063.452.0726:-:professional:*:*:*:*:* OR cpe:/a:hauri:virobot_desktop:5.5:*:*:*:*:*:*:* OR cpe:/a:vmware:workstation:5.0.0_build_13124:*:*:*:*:*:*:* AND cpe:/a:ibm:cognos_tm1:10.2.2:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0.3:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0.1:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0.2:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0.4:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0.5:*:*:*:*:*:*:* OR cpe:/a:ibm:planning_analytics:2.0.6:*:*:*:*:*:*:* BACK
microsoft antispyware 1.0.509
apple itunes 4.7.1.30
microsoft antispyware 1.0.509 beta1
checkpoint vpn-1 secureclient -
norman norman virus control 5.90
agnitum outpost firewall *
agnitum outpost security suite 6.7.3.3063.452.0726 -
hauri virobot desktop 5.5
vmware workstation 5.0.0_build_13124
ibm cognos tm1 10.2.2
ibm planning analytics 2.0.3
ibm planning analytics 2.0
ibm planning analytics 2.0.1
ibm planning analytics 2.0.2
ibm planning analytics 2.0.4
ibm planning analytics 2.0.5
ibm planning analytics 2.0.6
Denotes that component is vulnerable