Lucene search

[email protected]CVE-2012-1819

HistoryMay 02, 2012 - 10:55 p.m.

CVE-2012-1819

2012-05-0222:55:02

[email protected]

web.nvd.nist.gov

cve-2012-1819

wellintech

kingview 6.53

untrusted search path vulnerability

local privilege escalation

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.3%

JSON

Untrusted search path vulnerability in WellinTech KingView 6.53 allows local users to gain privileges via a Trojan horse DLL in the current working directory.

Affected configurations

NVD

Node

wellintechkingviewMatch6.53

CPENameOperatorVersion
wellintech:kingviewwellintech kingvieweq6.53

CPE	Name	Operator	Version
wellintech:kingview	wellintech kingview	eq	6.53

References

en.wellintech.com/news/detail.aspx?contentid=168

www.securityfocus.com/bid/53316

www.us-cert.gov/control_systems/pdf/ICSA-12-122-01.pdf

exchange.xforce.ibmcloud.com/vulnerabilities/75309

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

41.3%

JSON

Related for CVE-2012-1819

ics1 cvelist1 prion1 nvd1 nessus1