CVE-2002-1540
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The client for Symantec Norton AntiVirus Corporate Edition 7.5.x before 7.5.1 Build 62 and 7.6.x before 7.6.1 Build 35a runs winhlp32 with raised privileges, which allows local users to gain privileges by using certain features of winhlp32.
El cliente de Symantec Norton AntiVirus Corporate Edition 7.5.x anteriores a la 7.5.1 Build 62 y 7.6.x anteriores a la 7.6.1 Build 35a ejecutan winhlp32 con privilegios elevados, lo que permite a usuarios locales la obtención de privilegios utilizando ciertas caracterÃsticas de winhlp32.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2003-02-25 CVE Reserved
- 2003-03-31 CVE Published
- 2023-03-08 EPSS Updated
- 2024-08-08 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/bugtraq/2002-10/0346.html | Mailing List | |
| http://archives.neohapsis.com/archives/bugtraq/2002-10/0369.html | Mailing List | |
| http://www.osvdb.org/6258 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.iss.net/security_center/static/10475.php | 2008-09-10 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Symantec Search vendor "Symantec" | Norton Antivirus Search vendor "Symantec" for product "Norton Antivirus" | corporate_7.5 Search vendor "Symantec" for product "Norton Antivirus" and version "corporate_7.5" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Antivirus Search vendor "Symantec" for product "Norton Antivirus" | corporate_7.6 Search vendor "Symantec" for product "Norton Antivirus" and version "corporate_7.6" | - |
Affected
| ||||||
| Symantec Search vendor "Symantec" | Norton Antivirus Search vendor "Symantec" for product "Norton Antivirus" | corporate_7.51 Search vendor "Symantec" for product "Norton Antivirus" and version "corporate_7.51" | - |
Affected
| ||||||