Vulnerability Description
Dell TrueMobile 1300 WLAN Mini-PCI Card Util TrayApplet 3.10.39.0 does not properly drop SYSTEM privileges when started from the systray applet, which allows local users to gain privileges by accessing the Help functionality.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dell | Truemobile 1300 Wlan Mini-Pci Card Util Trayapplet | 3.10.39.0 |
References
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0042.htmlVendor Advisory
- http://secunia.com/advisories/10949Vendor Advisory
- http://securitytracker.com/id?1009174Vendor Advisory
- http://www.securityfocus.com/bid/9714
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15285
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0042.htmlVendor Advisory
- http://secunia.com/advisories/10949Vendor Advisory
- http://securitytracker.com/id?1009174Vendor Advisory
- http://www.securityfocus.com/bid/9714
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15285
FAQ
What is CVE-2004-2359?
CVE-2004-2359 is a vulnerability with a CVSS score of 10.0 (HIGH). Dell TrueMobile 1300 WLAN Mini-PCI Card Util TrayApplet 3.10.39.0 does not properly drop SYSTEM privileges when started from the systray applet, which allows local users to gain privileges by accessin...
How severe is CVE-2004-2359?
CVE-2004-2359 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2359?
Check the references section above for vendor advisories and patch information. Affected products include: Dell Truemobile 1300 Wlan Mini-Pci Card Util Trayapplet.