CVE-2003-1309

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0070.html", "name": "20030805 Local ZoneAlarm Firewall (probably all versions - tested on v3.1)", "tags": ["Exploit", "Vendor Advisory"], "refsource": "VULNWATCH"}, {"url": "http://sec-labs.hack.pl/advisories/seclabs-adv-zone-alarm-04-08-2003.txt", "name": "http://sec-labs.hack.pl/advisories/seclabs-adv-zone-alarm-04-08-2003.txt", "tags": [], "refsource": "MISC"}, {"url": "http://sec-labs.hack.pl/papers/win32ddc.php", "name": "http://sec-labs.hack.pl/papers/win32ddc.php", "tags": [], "refsource": "MISC"}, {"url": "http://download.zonelabs.com/bin/free/information/znalm/zaReleaseHistory.html", "name": "http://download.zonelabs.com/bin/free/information/znalm/zaReleaseHistory.html", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/8342", "name": "8342", "tags": ["Vendor Advisory"], "refsource": "BID"}, {"url": "http://www.osvdb.org/2375", "name": "2375", "tags": ["Patch", "Vendor Advisory"], "refsource": "OSVDB"}, {"url": "http://www.osvdb.org/4362", "name": "4362", "tags": ["Patch", "Vendor Advisory"], "refsource": "OSVDB"}, {"url": "http://secunia.com/advisories/9459", "name": "9459", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/12824", "name": "device-driver-gain-privileges(12824)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "The DeviceIoControl function in the TrueVector Device Driver (VSDATANT) in ZoneAlarm before 3.7.211, Pro before 4.0.146.029, and Plus before 4.0.146.029 allows local users to gain privileges via certain signals (aka \"Device Driver Attack\")."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2003-1309", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2003-12-31T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:zonelabs:zonealarm:3.7.211:*:plus:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zonelabs:zonealarm:3.7.211:*:pro:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:zonelabs:zonealarm:3.7.202:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-29T01:29Z"}