Vulnerability Details CVE-2003-1233
Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) \Device\PhysicalMemory or (2) to a drive letter using the subst command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.4%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 2.1
References
- http://archives.neohapsis.com/archives/bugtraq/2003-01/0017.html
- http://archives.neohapsis.com/archives/bugtraq/2003-01/0018.html
- http://secunia.com/advisories/7816
- http://www.phrack.org/show.php?p=59&a=16
- http://www.securityfocus.com/bid/6511
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10979
- http://archives.neohapsis.com/archives/bugtraq/2003-01/0017.html
- http://archives.neohapsis.com/archives/bugtraq/2003-01/0018.html
- http://secunia.com/advisories/7816
- http://www.phrack.org/show.php?p=59&a=16
- http://www.securityfocus.com/bid/6511
- https://exchange.xforce.ibmcloud.com/vulnerabilities/10979
Products affected by CVE-2003-1233
-
cpe:2.3:a:pedestalsoftware:integrity_protection_driver:-
-
cpe:2.3:a:pedestalsoftware:integrity_protection_driver:1.3