CVE-2005-3360

Description

The installation of Trend Micro PC-Cillin Internet Security 2005 12.00 build 1244, and probably previous versions, uses insecure default ACLs, which allows local users to cause a denial of service (disabled service) and gain system privileges by modifying or moving critical program files.

Affected products

• Trend Micro / pc-cillin_200512.00_build_1244 – 12.00_build_1244

References

• VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2005/2906
• MISChttp://www.securityfocus.com/bid/15872
• MISChttp://www.idefense.com/application/poi/display?id=351&type=vulnerabilities
• VENDOR_ADVISORYhttp://secunia.com/advisories/18044
• MISChttp://securitytracker.com/id?1015357