CVE-2013-3496
Last modified
CVE-2013-3496 is a vulnerability of currently unknown severity. Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.. EPSS estimates a 0.39% chance of exploitation in the next 30 days.
Description
Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Infotecs | Vipnet Client | <= 3.2.10 |
| Infotecs | Vipnet Coordinator | <= 3.2.10 |
| Infotecs | Vipnet Personal Firewall | <= 3.1 |
| Infotecs | Vipnet Safedisk | <= 4.1 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2013-3496?
How severe is CVE-2013-3496?
How do I fix CVE-2013-3496?
Are you affected by CVE-2013-3496?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST