DATEV Nutzungskontrolle 2.1 and 2.2 has insecure write permissions for critical registry keys, which allows local users to bypass access restrictions by importing NukoInfo values in certain DATEV keys, which disables Nutzungskontrolle.
References
Link | Resource |
---|---|
http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013113.html | Exploit Patch |
http://www.securityfocus.com/bid/8950 | Exploit Patch |
https://exchange.xforce.ibmcloud.com/vulnerabilities/13589 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2003-12-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2003-1169
Mitre link : CVE-2003-1169
CVE.ORG link : CVE-2003-1169
JSON object : View
Products Affected
datev
- nutzungskontrolle
CWE