CVE-2004-2730

Published: Dec 31, 2004Modified: Apr 16, 2026

4.6

Vector

AV:L/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 3.9 / Impact: 6.4

Source: NVD

Description

Sysinternals PsTools before 2.05, including (1) PsExec before 1.54, (2) PsGetsid before 1.41, (3) PsInfo before 1.61, (4) PsKill before 1.03, (5) PsList before 1.26, (6) PsLoglist before 2.51, (7) PsPasswd before 1.21, (8) PsService before 2.12, (9) PsSuspend before 1.05, and (10) PsShutdown before 2.32, does not properly disconnect from remote IPC$ and ADMIN$ shares, which allows local users to access the shares with elevated privileges by using the existing share mapping.

Affected (11)

Products: Microsoft: Psexec, Psgetsid, Psinfo, Pskill, Pslist, Psloglist, Pspasswd, Psservice, Psshutdown, Pssuspend, Sysinternals Pstools

11 products

Configuration A

11 vulnerable

Vulnerable Software	Affected Versions
Microsoft Psexec	Up to 1.53
Microsoft Psgetsid	Up to 1.40
Microsoft Psinfo	Up to 1.60
Microsoft Pskill	Up to 1.02
Microsoft Pslist	Up to 1.25
Microsoft Psloglist	Up to 2.50
Microsoft Pspasswd	Up to 1.20
Microsoft Psservice	Up to 2.11
Microsoft Psshutdown	Up to 2.31
Microsoft Pssuspend	Up to 1.04
Microsoft Sysinternals Pstools	Up to 2.04