cpe:2.3:a:moernaut:lsrunase:1.0:*:*:*:*:*:*:*
Geert Moernaut LSrunasE allows local users to gain privileges by obtaining the encrypted password from a batch file, and constructing a modified batch file that specifies this password in the /password switch and specifies an arbitrary program in the /command switch.
Max CVSS
7.2
EPSS Score
0.04%
Published
2008-02-05
Updated
2018-10-15
Geert Moernaut LSrunasE 1.0 and Supercrypt 1.0 use the RC4 stream cipher without constructing a unique initialization vector (IV), which makes it easier for local users to obtain cleartext passwords.
Max CVSS
2.1
EPSS Score
0.04%
Published
2008-02-05
Updated
2018-10-15
2 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!