Lucene search

[email protected]CVE-2010-5247

HistoryOct 03, 2022 - 4:21 p.m.

CVE-2010-5247

2022-10-0316:21:02

[email protected]

web.nvd.nist.gov

cve-2010-5247

untrusted search path vulnerability

qtweb browser

local privilege escalation

nvd

6.7 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.1%

JSON

Untrusted search path vulnerability in QtWeb Browser 3.3 build 043 allows local users to gain privileges via a Trojan horse wintab32.dll file in the current working directory, as demonstrated by a directory that contains a .html, .htm, or .mhtml file. NOTE: some of these details are obtained from third party information.

Affected configurations

NVD

Node

qtwebqtwebMatch3.3

CPENameOperatorVersion
qtweb:qtwebqtwebeq3.3

CPE	Name	Operator	Version
qtweb:qtweb	qtweb	eq	3.3

References

archives.neohapsis.com/archives/fulldisclosure/2010-08/0386.html

secunia.com/advisories/41201

6.7 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2010-5247

prion1 nvd1 cvelist1