Vulnerability Description
Webroot Desktop Firewall before 1.3.0build52 allows local users to disable the firewall, even when password protection is enabled, via certain DeviceIoControl commands.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Webroot Software | Desktop Firewall | <= 1.3.0_build_43 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html
- http://secunia.com/advisories/15745/Vendor Advisory
- http://secunia.com/secunia_research/2005-10/advisory/Vendor Advisory
- http://securityreason.com/securityalert/55
- http://securitytracker.com/id?1015012
- http://support.webroot.com/ics/support/KBAnswer.asp?questionID=2332
- http://www.osvdb.org/19869
- http://www.securityfocus.com/bid/15016
- http://www.vupen.com/english/advisories/2005/1973
- https://exchange.xforce.ibmcloud.com/vulnerabilities/22530
- http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0129.html
- http://secunia.com/advisories/15745/Vendor Advisory
- http://secunia.com/secunia_research/2005-10/advisory/Vendor Advisory
- http://securityreason.com/securityalert/55
- http://securitytracker.com/id?1015012
FAQ
What is CVE-2005-3198?
CVE-2005-3198 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Webroot Desktop Firewall before 1.3.0build52 allows local users to disable the firewall, even when password protection is enabled, via certain DeviceIoControl commands.
How severe is CVE-2005-3198?
CVE-2005-3198 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-3198?
Check the references section above for vendor advisories and patch information. Affected products include: Webroot Software Desktop Firewall.