Critical severity9.8NVD Advisory· Published Dec 31, 2003· Updated Apr 16, 2026

CVE-2003-1233

Description

Pedestal Software Integrity Protection Driver (IPD) 1.3 and earlier allows privileged attackers, such as rootkits, to bypass file access restrictions to the Windows kernel by using the NtCreateSymbolicLinkObject function to create a symbolic link to (1) \Device\PhysicalMemory or (2) to a drive letter using the subst command.

Affected products

Pedestal Software/Integrity Protection Driver
cpe:2.3:a:pedestalsoftware:integrity_protection_driver:*:*:*:*:*:*:*:*
Range: <=1.3

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

archives.neohapsis.com/archives/bugtraq/2003-01/0017.htmlnvdBroken LinkPatch
secunia.com/advisories/7816nvdBroken LinkPatchVendor Advisory
www.securityfocus.com/bid/6511nvdBroken LinkPatchThird Party AdvisoryVDB Entry
archives.neohapsis.com/archives/bugtraq/2003-01/0018.htmlnvdBroken LinkExploitPatch
exchange.xforce.ibmcloud.com/vulnerabilities/10979nvdThird Party AdvisoryVDB Entry
www.phrack.org/show.phpnvdBroken Link

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000