Smc.exe in My Firewall Plus 5.0 build 1117, and possibly other versions, does not drop privileges before launching the Log Viewer export functionality, which allows local users to corrupt arbitrary files by saving log files.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-03-18T05:00:00

Updated: 2024-08-07T21:13:54.293Z

Reserved: 2005-02-23T00:00:00

Link: CVE-2005-0515

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-05-18T04:00:00.000

Modified: 2024-11-20T23:55:18.703

Link: CVE-2005-0515

cve-icon Redhat

No data.