CVE-2014-1680CVE-2014-1680

Affected configuration(s):

cpe:/a:bandisoft:bandizip:3.00
cpe:/a:bandisoft:bandizip:3.01
cpe:/a:bandisoft:bandizip:3.02
cpe:/a:bandisoft:bandizip:3.03
cpe:/a:bandisoft:bandizip:3.04
cpe:/a:bandisoft:bandizip:3.05
cpe:/a:bandisoft:bandizip:3.06
cpe:/a:bandisoft:bandizip:3.07
cpe:/a:bandisoft:bandizip:3.08
cpe:/a:bandisoft:bandizip:3.09

Date published: 2014-02-14T08:10:30.950-05:00

Date last modified: 2017-08-28T21:34:27.233-04:00

CVSS Score: 6.9

Principal attack vector: LOCAL

Complexity:  MEDIUM

Reference URL: http://packetstormsecurity.com/files/125059

Summary: Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.