← CVECheck
HomeVulnerabilities

CVE-2003-1233 — CRITICAL severity vulnerability (Pedestal Software Integrity Protection Driver (IPD) 1.3 and)

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) \Device\PhysicalMemory or (2) to a drive letter using the subst co

CVE IDCVE-2003-1233
SeverityCRITICAL
CVSS score9.8
CVSS vectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWECWE-59
StatusModified
Published2003-12-31
Last modified2026-04-16
DescriptionPedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) \Device\PhysicalMemory or (2) to a drive letter using the subst command.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →