CVE-2005-1394

High

7.2/10

Summary

Format string vulnerability in ArcGIS for ESRI ArcInfo Workstation 9.0 allows local users to gain privileges via format string specifiers in the ARCHOME environment variable to (1) wservice or (2) lockmgr.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: COMPLETE
Availability Impact: COMPLETE

References

Advisory Timeline

Published May 03, 2005

CVE-2005-1394

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS