Vulnerability Description
Gravity Storm Service Pack Manager 2000 creates a hidden share (SPM2000c$) mapped to the C drive, which may allow local users to bypass access restrictions on certain directories in the C drive, such as system32, by accessing them through the hidden share.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Gravity Storm Software | Service Pack Manager 2000 | 6.0 |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-03/0284.html
- http://www.iss.net/security_center/static/8607.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/4347ExploitVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2002-03/0284.html
- http://www.iss.net/security_center/static/8607.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/4347ExploitVendor Advisory
FAQ
What is CVE-2002-0479?
CVE-2002-0479 is a vulnerability with a CVSS score of 7.2 (HIGH). Gravity Storm Service Pack Manager 2000 creates a hidden share (SPM2000c$) mapped to the C drive, which may allow local users to bypass access restrictions on certain directories in the C drive, such ...
How severe is CVE-2002-0479?
CVE-2002-0479 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0479?
Check the references section above for vendor advisories and patch information. Affected products include: Gravity Storm Software Service Pack Manager 2000.