CVE-2006-4184

Medium

4.9/10

Summary

SmartLine DeviceLock before 5.73 Build 305 does not properly enforce access control lists (ACL) in raw mode, which allows local users to bypass NTFS controls and obtain sensitive information.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: COMPLETE
Availability Impact: NONE

References

Advisory Timeline

Published Aug 17, 2006

CVE-2006-4184

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS