CVE-2014-7872

Comodo GeekBuddy before 4.18.121 does not restrict access to the VNC server, which allows local users to gain privileges by connecting to the server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
comodogeekbuddy
𝑥
≤ 4.18.120
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/135841/Comodo-Internet-Security-VNC-Server-Exposure.html
http://www.osvdb.org/122355
https://www.exploit-db.com/exploits/37065/
http://packetstormsecurity.com/files/135841/Comodo-Internet-Security-VNC-Server-Exposure.html
http://www.osvdb.org/122355
https://www.exploit-db.com/exploits/37065/