DATEV Nutzungskontrolle 2.1 and 2.2 has insecure write permissions for critical registry keys, which allows local users to bypass access restrictions by importing NukoInfo values in certain DATEV keys, which disables Nutzungskontrolle.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:46
Type | Values Removed | Values Added |
---|---|---|
References | () http://lists.grok.org.uk/pipermail/full-disclosure/2003-November/013113.html - Exploit, Patch | |
References | () http://www.securityfocus.com/bid/8950 - Exploit, Patch | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/13589 - |
Information
Published : 2003-12-31 05:00
Updated : 2024-11-20 23:46
NVD link : CVE-2003-1169
Mitre link : CVE-2003-1169
CVE.ORG link : CVE-2003-1169
JSON object : View
Products Affected
datev
- nutzungskontrolle
CWE