CVE-2006-3973 | Vulnerability Database | Aqua Security

My Firewall Plus 5.0 Build 1119 does not verify if explorer.exe is running before launching iexplore.exe from the Test Your Firewall feature, which allows local users to gain SYSTEM privileges.

Affected Software

Name	Vendor	Start Version	End Version
My_firewall_plus	My_firewall_plus	5.0_build_1119 (including)	5.0_build_1119 (including)

References

http://secunia.com/advisories/21142
http://secunia.com/secunia_research/2006-59/advisory
http://securitytracker.com/id?1017267
http://www.securityfocus.com/archive/1/452233/100/0/threaded
http://www.securityfocus.com/bid/21228
http://www.vupen.com/english/advisories/2006/4635
https://exchange.xforce.ibmcloud.com/vulnerabilities/30476
http://secunia.com/advisories/21142
http://secunia.com/secunia_research/2006-59/advisory
http://securitytracker.com/id?1017267
http://www.securityfocus.com/archive/1/452233/100/0/threaded
http://www.securityfocus.com/bid/21228
http://www.vupen.com/english/advisories/2006/4635
https://exchange.xforce.ibmcloud.com/vulnerabilities/30476

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-3973
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html