CVE-2008-3485

UNKNOWN

Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar

Published Aug 6, 2008

Modified 1 years ago

No fix available

Details

Untrusted search path vulnerability in Citrix MetaFrame Presentation Server allows local users to gain privileges via a malicious icabar.exe placed in the search path.

References

ADVISORYhttp://securityreason.com/securityalert/4110 WEBhttp://www.securityfocus.com/archive/1/494952/100/0/threaded WEBhttp://www.securityfocus.com/bid/30446 WEBhttps://exchange.xforce.ibmcloud.com/vulnerabilities/44490 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2008-3485

CVSS Analysis

CVSS v2.0

7.2

Exploitability

Access Vector

LocalAV:L

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

CompleteC:C

Integrity

CompleteI:C

Availability

CompleteA:C

7.2/AV:L/AC:L/Au:N/C:C/I:C/A:C

Ecosystems

Timeline

PublishedAug 6, 2008

ModifiedAug 7, 2024