Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4755

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2012-4755
Last Modified 06 Sep 2012 02:18:13
Published 06 Sep 2012 06:41:58
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4755

Summary

Untrusted search path vulnerability in SciTools Understand before 2.6 build 600 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .udb file. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Scitools Understand 2.6


References

MISC - http://www.zeroscience.mk/en/vulnerabilities/ZSL-2012-5071.php

CONFIRM - http://www.scitools.com/support/buildLogs/understand26_build_log.html

SECUNIA - 47921


Last Updated: 27 May 2016 10:55:02