Vulnerability Description
The kernel driver in Prevx Pro 2005 1.0 does not verify the source of certain messages, which allows local users to bypass protection by sending certain messages to the driver, as demonstrated by sending an "allow" message to bypass a warning message.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Prevx | Prevx Pro 2005 | 1.0 |
References
- http://secunia.com/advisories/15885Vendor Advisory
- http://securitytracker.com/id?1014346
- http://secunia.com/advisories/15885Vendor Advisory
- http://securitytracker.com/id?1014346
FAQ
What is CVE-2005-2145?
CVE-2005-2145 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The kernel driver in Prevx Pro 2005 1.0 does not verify the source of certain messages, which allows local users to bypass protection by sending certain messages to the driver, as demonstrated by send...
How severe is CVE-2005-2145?
CVE-2005-2145 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2145?
Check the references section above for vendor advisories and patch information. Affected products include: Prevx Prevx Pro 2005.