Lucene search
HistoryOct 18, 2010 - 5:00 p.m.
CVE-2010-2368
cve-2010-2368
untrusted search path vulnerability
lhaplus
privilege escalation
trojan horse dll
nvd
6.6 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
Untrusted search path vulnerability in Lhaplus before 1.58 allows local users to gain privileges via a Trojan horse DLL in the current working directory.
Affected configurations
Node
lhapluslhaplusRange≤1.57
ORlhapluslhaplusMatch1.52
ORlhapluslhaplusMatch1.53
ORlhapluslhaplusMatch1.55
ORlhapluslhaplusMatch1.56
Related
nvd
nvd
CVE-2010-2368
2010-10-18 17:00:03
jvn
jvn
JVN#82752978: Lhaplus may insecurely load dynamic libraries
2010-10-12 00:00:00
cvelist
cvelist
CVE-2010-2368
2010-10-18 16:00:00
prion
prion
Design/Logic Flaw
2010-10-18 17:00:00
openvas
openvas
Lhaplus Untrusted search path Vulnerability
2010-10-22 00:00:00
Lhaplus Untrusted search path Vulnerability
2010-10-22 00:00:00
6.6 Medium
AI Score
Confidence
Low
6.9 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.2%
Related for CVE-2010-2368