CVE-2012-4755

Published Sep 6, 2012

Last updated 12 years ago

Overview

Description
Untrusted search path vulnerability in SciTools Understand before 2.6 build 600 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .udb file. NOTE: some of these details are obtained from third party information.
Source
cve@mitre.org
NVD status
Analyzed

Social media

Hype score
Not currently trending

Risk scores

CVSS 2.0

Type
Primary
Base score
6.9
Impact score
10
Exploitability score
3.4
Vector string
AV:L/AC:M/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov
NVD-CWE-Other

Evaluator

Comment
Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426 Untrusted Search Path'
Impact
-
Solution
-

Configurations