CVE-2012-0279

Quest Toad for Data Analysts 3.0.1 uses weak permissions (Everyone: Full Control) for the %COMMONPROGRAMFILES%\Quest Shared directory, which allows local users to gain privileges via a Trojan horse file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
flexeraCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
VendorProductVersion
questtoad_for_data_analysts
3.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://secunia.com/advisories/48663
http://secunia.com/secunia_research/2012-13/
http://www.securityfocus.com/bid/53276
https://exchange.xforce.ibmcloud.com/vulnerabilities/75192
http://secunia.com/advisories/48663
http://secunia.com/secunia_research/2012-13/
http://www.securityfocus.com/bid/53276
https://exchange.xforce.ibmcloud.com/vulnerabilities/75192