CVE Vulnerabilities

CVE-2012-0279

Published: May 01, 2012 | Modified: Aug 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.9 MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Quest Toad for Data Analysts 3.0.1 uses weak permissions (Everyone: Full Control) for the %COMMONPROGRAMFILES%Quest Shared directory, which allows local users to gain privileges via a Trojan horse file.

Affected Software

Name Vendor Start Version End Version
Toad_for_data_analysts Quest 3.0.1 3.0.1

References