Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2011-5157
HistorySep 06, 2012 - 10:41 a.m.

CVE-2011-5157

2012-09-0610:41:58
mitre
web.nvd.nist.gov
22
cve-2011-5157
untrusted search path vulnerability
attachmate reflection
privilege escalation
local users
trojan horse dll
vulnerability

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.167

Percentile

96.1%

JSON

Untrusted search path vulnerability in Attachmate Reflection before 14.1 SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, a related issue to CVE-2011-0107. NOTE: some of these details are obtained from third party information.

Affected configurations

Nvd
Node
attachmatereflection_for_hpMatch14.0
OR
attachmatereflection_for_hpMatch14.1sp1
OR
attachmatereflection_for_ibmMatch14.0
OR
attachmatereflection_for_ibmMatch14.1sp1
OR
attachmatereflection_for_regis_graphics_serverMatch14.0
OR
attachmatereflection_for_regis_graphics_serverMatch14.1sp1
OR
attachmatereflection_for_unix_and_openvmsMatch14.0
OR
attachmatereflection_for_unix_and_openvmsMatch14.1sp1
OR
attachmatereflection_xMatch14.0
OR
attachmatereflection_xMatch14.1sp1
VendorProductVersionCPE
attachmatereflection_for_hp14.0cpe:2.3:a:attachmate:reflection_for_hp:14.0:*:*:*:*:*:*:*
attachmatereflection_for_hp14.1cpe:2.3:a:attachmate:reflection_for_hp:14.1:sp1:*:*:*:*:*:*
attachmatereflection_for_ibm14.0cpe:2.3:a:attachmate:reflection_for_ibm:14.0:*:*:*:*:*:*:*
attachmatereflection_for_ibm14.1cpe:2.3:a:attachmate:reflection_for_ibm:14.1:sp1:*:*:*:*:*:*
attachmatereflection_for_regis_graphics_server14.0cpe:2.3:a:attachmate:reflection_for_regis_graphics_server:14.0:*:*:*:*:*:*:*
attachmatereflection_for_regis_graphics_server14.1cpe:2.3:a:attachmate:reflection_for_regis_graphics_server:14.1:sp1:*:*:*:*:*:*
attachmatereflection_for_unix_and_openvms14.0cpe:2.3:a:attachmate:reflection_for_unix_and_openvms:14.0:*:*:*:*:*:*:*
attachmatereflection_for_unix_and_openvms14.1cpe:2.3:a:attachmate:reflection_for_unix_and_openvms:14.1:sp1:*:*:*:*:*:*
attachmatereflection_x14.0cpe:2.3:a:attachmate:reflection_x:14.0:*:*:*:*:*:*:*
attachmatereflection_x14.1cpe:2.3:a:attachmate:reflection_x:14.1:sp1:*:*:*:*:*:*

Related

prion 2
cvelist 2
nvd 2
seebug 1
checkpoint_advisories 1
cve 1
nessus 1
openvas 2
securityvulns 1
prion
prion
Sql injection
2012-09-06 10:41:00
Design/Logic Flaw
2011-04-13 18:55:00
cvelist
cvelist
CVE-2011-5157
2012-09-06 10:00:00
CVE-2011-0107
2011-04-13 18:00:00
nvd
nvd
CVE-2011-5157
2012-09-06 10:41:58
CVE-2011-0107
2011-04-13 18:55:01
seebug
seebug
Microsoft Officeε…±δΊ«η»„δ»ΆDLLεŠ θ½½δ»»ζ„δ»£η ζ‰§θ‘ŒζΌζ΄ž(MS11-023)
2011-04-15 00:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Word .docx Insecure Library Loading (MS11-023; CVE-2011-0107)
2011-04-07 00:00:00
cve
cve
CVE-2011-0107
2011-04-13 18:55:01
nessus
nessus
MS11-023: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2489293)
2011-04-13 00:00:00
openvas
openvas
Microsoft Office Remote Code Execution Vulnerabilities (2489293)
2011-04-13 00:00:00
Microsoft Office Remote Code Execution Vulnerabilities (2489293)
2011-04-13 00:00:00
securityvulns
securityvulns
Microsoft Office multiple security vulnerabilities
2011-04-17 00:00:00

CVSS2

6.9

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.4

Confidence

Low

EPSS

0.167

Percentile

96.1%

JSON
Related for CVE-2011-5157
prion2cvelist2nvd2seebug1checkpoint_advisories1cve1nessus1openvas2securityvulns1