Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) \Device\PhysicalMemory or (2) to a drive letter using the subst command.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-10-28T04:00:00
Updated: 2024-08-08T02:19:45.921Z
Reserved: 2005-10-28T00:00:00
Link: CVE-2003-1233
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2003-12-31T05:00:00.000
Modified: 2024-02-16T19:01:14.807
Link: CVE-2003-1233
Redhat
No data.