Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/06/1998 Updated: 19/12/2017

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Cheyenne InocuLAN Anti-Virus Server in Inoculan 4.0 before Service Pack 2 creates an update directory with "EVERYONE FULL CONTROL" permissions, which allows local users to cause Inoculan's antivirus update feature to install a Trojan horse dll.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cheyenne inoculan anti-virus server

source: wwwsecurityfocuscom/bid/106/info It is possible to run arbitrary code on any Intel machine running Cheyenne Inoculan version 40 for Windows NT prior to SP2 Inoculan runs as a service, called "Cheyenne InocuLAN Anti-Virus Server" When it starts, it replaces any shared directory with the same name and shares "CHEYUPD$" with fu ...

NVD-CWE-Other http://www.securityfocus.com/archive/1/9515 http://www.securityfocus.com/bid/106 https://exchange.xforce.ibmcloud.com/vulnerabilities/1536 https://nvd.nist.gov https://www.exploit-db.com/exploits/19083/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-1999-1555

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect