Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2264

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2015-2264
Last Modified 13 Mar 2015 03:00:29
Published 12 Mar 2015 09:59:34
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2015-2264

Summary

Multiple untrusted search path vulnerabilities in (1) EQATEC.Analytics.Monitor.Win32_vc100.dll and (2) EQATEC.Analytics.Monitor.Win32_vc100-x64.dll in Telerik Analytics Monitor Library before 3.2.125 allow local users to gain privileges via a Trojan horse (a) csunsapi.dll, (b) swift.dll, (c) nfhwcrhk.dll, or (d) surewarehook.dll file in an unspecified directory.

Vulnerable Systems

Application

  • Telerik Analytics Monitor Library 3.2.122


References

CERT-VN - VU#794095


Last Updated: 27 May 2016 11:08:05