Description |
---|
<a href="http://cwe.mitre.org/data/definitions/428.html" rel="nofollow">CWE-428: Unquoted Search Path or Element</a>~Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder. Impacted versions: * Base Score: 4.4, Severity: MEDIUM, ID: CVE-2015-4173, Last Modified: 2018-10-09T19:57:00Z References Third Party Advisory Third Party Advisory Third Party Advisory Broken Link |
Unquoted Windows search path vulnerability in the autorun value in Dell SonicWall NetExtender before 7.5.227 and 8.0.x before 8.0.238, as used in the SRA firmware before 7.5.1.2-40sv and 8.x before 8.0.0.3-23sv, allows local users to gain privileges via a Trojan horse program in the %SYSTEMDRIVE% folder.~<a href="http://cwe.mitre.org/data/definitions/428.html" rel="nofollow">CWE-428: Unquoted Search Path or Element</a> Impacted versions: 8.0.0.1, 8.0.0.2, 8.0.0.0 Base Score: 4.4, Severity: MEDIUM, ID: CVE-2015-4173, Last Modified: 2018-10-09T19:57:00Z References Third Party Advisory Third Party Advisory Third Party Advisory Broken Link |
USAGE: Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.