CVE-2012-1242

Опубликовано: 27 апр. 2012

Источник: nvd

CVSS2: 6.9

EPSS Низкий

Описание

Untrusted search path vulnerability in JustSystems Ichitaro 2011 Sou, Ichitaro 2006 through 2011, Ichitaro Government 2006 through 2010, Ichitaro Portable with oreplug, Ichitaro Viewer, JUST School, JUST School 2009 and 2010, JUST Jump 4, JUST Frontier, and oreplug allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Комментарий

Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:justsystems:ichitaro:2006:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2006:-:government:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2007:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2007:-:government:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2008:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2008:-:government:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2009:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2009:-:government:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2010:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2010:-:government:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2011:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro:2011:-:sou:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro_portable_with_oreplug:-:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:ichitaro_viewer:-:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:just_frontier:-:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:just_jump:4:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:just_school:-:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:just_school:2009:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:just_school:2010:*:*:*:*:*:*:*

cpe:2.3:a:justsystems:oreplug:-:*:*:*:*:*:*:*

EPSS

Процентиль: 16%

0.00053

Низкий

6.9 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6w9r-jpj4-8wmc

github

больше 3 лет назад