CVE-2005-1372

BakBone NetVault 7.1 - Privilege Escalation

Title source: llm

Description

nvstatsmngr.exe process in BakBone NetVault 7.1 does not properly drop privileges before opening files, which allows local users to gain privileges via the Help menu.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Reed Arvin · clocalwindows

https://www.exploit-db.com/exploits/1161

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/20302

[Mailing List] http://marc.info/?l=bugtraq&m=111464410324243&w=2

[Third Party Advisory, VDB Entry] http://www.osvdb.org/15900

[Third Party Advisory] http://secunia.com/advisories/15158/

[Third Party Advisory] http://www.vupen.com/english/advisories/2005/0420

[Exploit] http://www.securityfocus.com/bid/13408

Scores

EPSS 0.0019

EPSS Percentile 40.2%

Details

Status published

Products (2)

bakbone/netvault 7.1.1

bakbone/netvault 7.3

Published May 03, 2005

Tracked Since Feb 18, 2026