Lucene search
MitreCVE-2010-5224HistorySep 06, 2012 - 10:41 a.m.
CVE-2010-5224
2012-09-0610:41:56
mitre
web.nvd.nist.gov
22
cve-2010-5224
untrusted search path
vulnerability
cool iphone ringtone maker
local users
privileges
trojan horse
dwmapi.dll
nvd
security
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
Untrusted search path vulnerability in Cool iPhone Ringtone Maker 2.2.3 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .mp3 file. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
coolrecordeditcool_iphone_ringtone_makerMatch2.2.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| coolrecordedit | cool_iphone_ringtone_maker | 2.2.3 | cpe:2.3:a:coolrecordedit:cool_iphone_ringtone_maker:2.2.3:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2010-5224
2012-09-06 10:41:56
prion
prion
Design/Logic Flaw
2012-09-06 10:41:00
cvelist
cvelist
CVE-2010-5224
2012-09-06 10:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.7
Confidence
High
EPSS
0
Percentile
5.1%
Related for CVE-2010-5224