CVE Vulnerabilities

CVE-2003-0641

Published: Aug 27, 2003 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.6 MEDIUM
AV:L/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

WatchGuard ServerLock for Windows 2000 before SL 2.0.3 allows local users to load arbitrary modules via the OpenProcess() function, as demonstrated using (1) a DLL injection attack, (2) ZwSetSystemInformation, and (3) API hooking in OpenProcess.

Affected Software

Name Vendor Start Version End Version
Serverlock Watchguard 2.0 2.0
Serverlock Watchguard 2.0.1 2.0.1
Serverlock Watchguard 2.0.2 2.0.2

References