| Vulnerability Name: | CVE-2006-3697 (CCN-27848) | ||||||||
| Assigned: | 2006-07-16 | ||||||||
| Published: | 2006-07-16 | ||||||||
| Updated: | 2018-10-18 | ||||||||
| Summary: | Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell BorderManager Novell Client Firewall 2.0, does not properly restrict user activities in application windows that run in a LocalSystem context, which allows local users to gain privileges and execute commands (a) via the "open folder" option when no instance of explorer.exe is running, possibly related to the ShellExecute API function; or (b) by overwriting a batch file through the "Save Configuration As" option. Note: this might be a vulnerability in Microsoft Windows and explorer.exe instead of the firewall. | ||||||||
| CVSS v3 Severity: | 9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C) 5.8 Medium (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:U/RC:UR)
5.8 Medium (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:U/RC:UR)
| ||||||||
| Vulnerability Type: | CWE-264 | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: CCN Type: BugTraq Mailing List, Sun Jul 16 2006 - 08:23:16 CDT Escalation of privileges in Outpost and Lavasoft Firewalls -Unusual ShellExecute behavior Source: MITRE Type: CNA CVE-2006-3697 Source: CCN Type: SA21088 Lavasoft Personal Firewall Privilege Escalation Vulnerabilities Source: SECUNIA Type: Vendor Advisory 21088 Source: CCN Type: SA21089 Outpost Firewall Pro Privilege Escalation Vulnerabilities Source: SECUNIA Type: Vendor Advisory 21089 Source: CCN Type: Outpost Firewall Pro Web page Outpost Firewall PRO - Personal Firewall Source: CCN Type: Ben Goulding Security Advisory Security Advisory 16-jul-2006 Source: MISC Type: UNKNOWN http://www.ben.goulding.com.au/secad.html Source: CCN Type: Lavasoft Personal Firewall Web site Lavasoft Personal Firewall - Software - Lavasoft Source: CCN Type: Novell Border Manager Client Firewall Web site Network Content Filtering & Employee Internet Monitoring: Novell BorderManager Source: OSVDB Type: UNKNOWN 27349 Source: CCN Type: OSVDB ID: 27348 Lavasoft Personal Firewall Open Folder Local Privilege Escalation Source: CCN Type: OSVDB ID: 27349 Outpost Firewall Pro Open Folder Local Privilege Escalation Source: BUGTRAQ Type: UNKNOWN 20060716 Escalation of privileges in Outpost and Lavasoft Firewalls -Unusual ShellExecute behavior Source: BID Type: UNKNOWN 19018 Source: CCN Type: BID-19018 Lavasoft Personal Firewall Local Privilege Escalation Vulnerability Source: BID Type: UNKNOWN 19024 Source: CCN Type: BID-19024 Outpost Firewall PRO Local Privilege Escalation Vulnerability Source: VUPEN Type: Vendor Advisory ADV-2006-2851 Source: VUPEN Type: Vendor Advisory ADV-2006-2852 Source: VUPEN Type: Vendor Advisory ADV-2007-0144 Source: XF Type: UNKNOWN outpost-openfolder-privilege-escalation(27848) Source: CONFIRM Type: UNKNOWN https://secure-support.novell.com/KanisaPlatform/Publishing/903/3762108_f.SAL_Public.html | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||