CVE-2012-0279

EUVD-2012-0315
Quest Toad for Data Analysts 3.0.1 uses weak permissions (Everyone: Full Control) for the %COMMONPROGRAMFILES%\Quest Shared directory, which allows local users to gain privileges via a Trojan horse file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 9%
Affected Products (NVD)
VendorProductVersion
questtoad_for_data_analysts
3.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/48663
http://secunia.com/secunia_research/2012-13/
http://www.securityfocus.com/bid/53276
https://exchange.xforce.ibmcloud.com/vulnerabilities/75192
http://secunia.com/advisories/48663
http://secunia.com/secunia_research/2012-13/
http://www.securityfocus.com/bid/53276
https://exchange.xforce.ibmcloud.com/vulnerabilities/75192