NVD

Id
10873  
Name
CVE-2011-4434  
Description
Microsoft Windows Server 2008 R2 and R2 SP1 and Windows 7 Gold and SP1 do not properly enforce AppLocker rules, which allows local users to bypass intended access restrictions via a (1) macro or (2) scripting feature in an application, as demonstrated by Microsoft Office applications and the SANDBOX_INERT and LOAD_IGNORE_CODE_AUTHZ_LEVEL flags.  
Reject
 
CVSS Version
2  
CVSS Score
3.6  
Severity
Low  
CVSS Base Score
3.6  
CVSS Impact Subscore
4.9  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:N/I:P/A:P)  
Pub Date
2017-01-07  
Published
2011-11-11  
Modified Date
2011-11-15  
Seq
2011-4434  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
60905 10873 CVE-2011-4434 2532445  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
32601 JVNDB-2011-002841 Microsoft Windows Server 2008 および Windows 7 におけるアクセス制限を回避される脆弱性 Microsoft Windows Server 2008 および Windows 7 は、AppLocker ルールを適切に処理しないため、アクセス制限を回避される脆弱性が存在します。 CVE-2011-4434 52341 CVE-2011-4434 10873 4.6 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-002841.html 2011-11-11 2011-11-15 View