Vulnerability Description
The VisNetic AntiVirus Plug-in (DKAVUpSch.exe) for Mail Server 4.6.0.4, 4.6.1.1, and possibly other versions before 4.6.1.2, does not drop privileges before executing other programs, which allows local users to gain privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Visnetic | Visnetic Antivirus Plug-In For Mail Server | 4.6.0.4 |
References
- http://secunia.com/advisories/16583PatchVendor Advisory
- http://secunia.com/secunia_research/2005-65/advisory/Vendor Advisory
- http://securitytracker.com/id?1015670
- http://www.securityfocus.com/archive/1/425890/100/0/threaded
- http://www.securityfocus.com/bid/16788
- http://www.vupen.com/english/advisories/2006/0701
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24928
- http://secunia.com/advisories/16583PatchVendor Advisory
- http://secunia.com/secunia_research/2005-65/advisory/Vendor Advisory
- http://securitytracker.com/id?1015670
- http://www.securityfocus.com/archive/1/425890/100/0/threaded
- http://www.securityfocus.com/bid/16788
- http://www.vupen.com/english/advisories/2006/0701
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24928
FAQ
What is CVE-2006-0812?
CVE-2006-0812 is a vulnerability with a CVSS score of 7.2 (HIGH). The VisNetic AntiVirus Plug-in (DKAVUpSch.exe) for Mail Server 4.6.0.4, 4.6.1.1, and possibly other versions before 4.6.1.2, does not drop privileges before executing other programs, which allows loca...
How severe is CVE-2006-0812?
CVE-2006-0812 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-0812?
Check the references section above for vendor advisories and patch information. Affected products include: Visnetic Visnetic Antivirus Plug-In For Mail Server.