CVE-2011-0403
Published Jan 11, 2011
Last updated 7 years ago
Overview
- Description
- Untrusted search path vulnerability in ImgBurn.exe in ImgBurn 2.4.0.0, 2.5.4.0, and other versions allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse dwmapi.dll that is located in the same folder as a CUE file.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 9.3
- Impact score
- 10
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Evaluator
- Comment
- Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'
- Impact
- -
- Solution
- -
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:imgburn:imgburn:1.0.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5F7A3FB9-291D-4220-932F-AE46237A0D90"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:1.1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BD036A5E-00F4-4F3F-9E6B-F5A3C1EDB227"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:1.2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "238F0717-4289-4800-8583-620B22DB1095"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:1.3.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1679FBFE-043E-4FAD-8439-2C7E9956C441"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.0.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "46ECF18F-B3F9-40B2-8892-8189A272C5E2"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "892AEB60-FBC5-42D7-B54F-B89D5DC10308"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B23D046-390E-48B0-9A61-6352AA8434FE"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.3.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F873CA52-7275-42B6-87D2-79E244AE789D"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.3.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D090F6CA-23FD-4854-8092-58C392CFCFC0"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.3.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3CB1AC59-86C8-4B21-82A9-96306BC940AD"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.4.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D3460E3E-0FD1-4606-B64D-73F495614475"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.4.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "91B731AE-704C-4F67-ABFA-E2186821FF2C"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.4.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A1F8A5F-467F-4DAF-A429-9984D611C778"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.4.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5E2EBF16-0292-4904-8996-A55580745E59"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.4.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E2731B2C-9DD7-4C0C-92B2-44B5DD165384"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.5.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5ACE56BB-B5AF-4BB7-B593-4451E95C299D"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.5.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C55B4BAB-48BF-4093-985A-A791A6A31F27"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.5.2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8145B201-73DD-4CB6-AE7E-0683492733F1"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.5.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1A50E2DC-BA03-4F74-A7AC-8B75FB6F0B42"
},
{
"criteria": "cpe:2.3:a:imgburn:imgburn:2.5.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78FE14FA-5C88-47B0-9797-E0F0BF8740A7"
}
],
"operator": "OR"
}
]
}
]