exploitDog

CVE-2010-3125

Опубликовано: 26 авг. 2010

Источник: nvd

CVSS2: 9.3

EPSS Низкий

Описание

Untrusted search path vulnerability in TeamMate Audit Management Software Suite 8.0 patch 2 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc71enu.dll that is located in the same folder as a .tmx file.

Комментарий

Per: http://cwe.mitre.org/data/definitions/426.html

'CWE-426: Untrusted Search Path'

Ссылки

http://www.exploit-db.com/exploits/14747
Exploit
http://www.exploit-db.com/exploits/14747
Exploit

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wolterskluwer:teammate_audit_management_software_suite:8.0:2:*:*:*:*:*:*

EPSS

Процентиль: 86%

0.03067

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j7fw-hrf2-f7vm

github

больше 3 лет назад

Untrusted search path vulnerability in TeamMate Audit Management Software Suite 8.0 patch 2 allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse mfc71enu.dll that is located in the same folder as a .tmx file.

EPSS

Процентиль: 86%

0.03067

Низкий

9.3 Critical

CVSS2

Дефекты

NVD-CWE-Other