CVE-2014-7872

EUVD-2014-7722
Comodo GeekBuddy before 4.18.121 does not restrict access to the VNC server, which allows local users to gain privileges by connecting to the server.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 72%
Affected Products (NVD)
VendorProductVersion
comodogeekbuddy
𝑥
≤ 4.18.120
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/135841/Comodo-Internet-Security-VNC-Server-Exposure.html
http://www.osvdb.org/122355
https://www.exploit-db.com/exploits/37065/
http://packetstormsecurity.com/files/135841/Comodo-Internet-Security-VNC-Server-Exposure.html
http://www.osvdb.org/122355
https://www.exploit-db.com/exploits/37065/