exploitDog

CVE-2010-5221

Опубликовано: 06 сент. 2012

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

Untrusted search path vulnerability in STDU Explorer 1.0.201 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. NOTE: some of these details are obtained from third party information.

Комментарий

Per: http://cwe.mitre.org/data/definitions/426.html

'CWE-426 Untrusted Search Path'

Ссылки

http://packetstormsecurity.org/1010-exploits/stdu-dllhijack.txt
http://secunia.com/advisories/41845
Vendor Advisory
http://packetstormsecurity.org/1010-exploits/stdu-dllhijack.txt
http://secunia.com/advisories/41845
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:stdutility:stdu_explorer:1.0.201:*:*:*:*:*:*:*

EPSS

Процентиль: 22%

0.0007

Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6648-qm4m-vqcm

github

больше 3 лет назад

Untrusted search path vulnerability in STDU Explorer 1.0.201 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. NOTE: some of these details are obtained from third party information.

EPSS

Процентиль: 22%

0.0007

Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other