CyberSec.Space Logo
Back to CVE Browser

CVE-2006-3697

HIGH
7.2
CVSS Severity Score
EPSS Score0.1570%
EPSS Percentile16.67th
PublishedJul 21, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell BorderManager Novell Client Firewall 2.0, does not properly restrict user activities in application windows that run in a LocalSystem context, which allows local users to gain privileges and execute commands (a) via the "open folder" option when no instance of explorer.exe is running, possibly related to the ShellExecute API function; or (b) by overwriting a batch file through the "Save Configuration As" option. NOTE: this might be a vulnerability in Microsoft Windows and explorer.exe instead of the firewall.

Affected Platforms (CPE)

πŸ“¦
Agnitum

Outpost Firewall

= 3.51.759.6511
πŸ“¦
Lavasoft

Lavasoft Personal Firewall

= 1.0.543.5722.433
πŸ“¦
Novell

Client Firewall

= 2.0

References & Advisories

πŸ”— http://secunia.com/advisories/21088
πŸ”— http://secunia.com/advisories/21089
πŸ”— http://www.ben.goulding.com.au/secad.html
πŸ”— http://www.osvdb.org/27349
πŸ”— http://www.securityfocus.com/archive/1/440426/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/19018
πŸ”— http://www.securityfocus.com/bid/19024
πŸ”— http://www.vupen.com/english/advisories/2006/2851

Related Vulnerabilities

CVE-2004-25547.2

Novell Client Firewall (NCF) 2.0, as based on the Agnitum Outpost Firewall, allows local users to execute arbitrary code with SYST...

CVE-2007-03337.2

Agnitum Outpost Firewall PRO 4.0 allows local users to bypass access restrictions and insert Trojan horse drivers into the product...

CVE-2004-24725.0

Agnitum Outpost Pro Firewall 2.1 allows remote attackers to cause a denial of service (CPU consumption) via a flood of small, inva...

CVE-2006-71604.9

The Sandbox.sys driver in Outpost Firewall PRO 4.0, and possibly earlier versions, does not validate arguments to hooked SSDT func...