6.9
CVE-2010-5196
- EPSS 0.58%
- Veröffentlicht 06.09.2012 10:41:54
- Zuletzt bearbeitet 16.06.2026 23:26:18
- CVE-Watchlists
- Unerledigt
Untrusted search path vulnerability in KeePass Password Safe before 2.13 allows local users to gain privileges via a Trojan horse DwmApi.dll file in the current working directory, as demonstrated by a directory that contains a .kdbx file. NOTE: some of these details are obtained from third party information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Keepass ≫ Password Safe Version <= 2.10
Keepass ≫ Password Safe Version1.6
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.58% | 0.431 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.9 | 3.4 | 10 |
AV:L/AC:M/Au:N/C:C/I:C/A:C
|
http://www.corelan.be:8800/index.php/2010/08/25/dll-hijacking-kb-2269637-the-unofficial-list/
http://secunia.com/advisories/41167
http://www.keepass.info/news/n100906_2.13.html