Unrated severityNVD Advisory· Published Oct 21, 2004· Updated Apr 16, 2026

CVE-2004-1624

Description

Carbon Copy 6.0.5257 does not drop system privileges when opening external programs through the help topic interface, which allows local users to gain privileges via (1) the help topic interface in CCW32.exe, which launches Notepad, or (2) the help button in the Carbon Copy Scheduler (CCSched.exe).

Affected products

Altiris/Carbon Copy2 versions
cpe:2.3:a:altiris:carbon_copy:5.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:altiris:carbon_copy:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:altiris:carbon_copy:6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/12962nvdVendor Advisory
www.securityfocus.com/bid/11500nvdVendor Advisory
marc.infonvd
exchange.xforce.ibmcloud.com/vulnerabilities/17838nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000