Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2010-3160
cve-2010-3160
untrusted search path vulnerability
archive decoder
privilege escalation
nvd
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Untrusted search path vulnerability in Archive Decoder 1.23 and earlier allows local users to gain privileges via a Trojan horse executable file in the current working directory.
Affected configurations
Node
ponsoftwarearchive_decoderRange≤1.23
ORponsoftwarearchive_decoderMatch1.00
ORponsoftwarearchive_decoderMatch1.01
ORponsoftwarearchive_decoderMatch1.02
ORponsoftwarearchive_decoderMatch1.03
ORponsoftwarearchive_decoderMatch1.04
ORponsoftwarearchive_decoderMatch1.05
ORponsoftwarearchive_decoderMatch1.06
ORponsoftwarearchive_decoderMatch1.07
ORponsoftwarearchive_decoderMatch1.08
ORponsoftwarearchive_decoderMatch1.09
ORponsoftwarearchive_decoderMatch1.11
ORponsoftwarearchive_decoderMatch1.12
ORponsoftwarearchive_decoderMatch1.13
ORponsoftwarearchive_decoderMatch1.20
ORponsoftwarearchive_decoderMatch1.21
ORponsoftwarearchive_decoderMatch1.22
Related
cvelist
cvelist
CVE-2010-3160
2022-10-03 16:20:58
jvn
jvn
JVN#68536660: Archive Decoder may insecurely load executable files
2010-10-20 00:00:00
prion
prion
Design/Logic Flaw
2010-10-25 20:01:00
nvd
nvd
CVE-2010-3160
2010-10-25 20:01:02
6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
6.7 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2010-3160