CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
5.1%
Untrusted search path vulnerability in Lhaplus before 1.58 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Vendor | Product | Version | CPE |
---|---|---|---|
lhaplus | lhaplus | * | cpe:2.3:a:lhaplus:lhaplus:*:*:*:*:*:*:*:* |
lhaplus | lhaplus | 1.52 | cpe:2.3:a:lhaplus:lhaplus:1.52:*:*:*:*:*:*:* |
lhaplus | lhaplus | 1.53 | cpe:2.3:a:lhaplus:lhaplus:1.53:*:*:*:*:*:*:* |
lhaplus | lhaplus | 1.55 | cpe:2.3:a:lhaplus:lhaplus:1.55:*:*:*:*:*:*:* |
lhaplus | lhaplus | 1.56 | cpe:2.3:a:lhaplus:lhaplus:1.56:*:*:*:*:*:*:* |