CVE-2014-1680

2014-02-14T13:10:00
ID CVE-2014-1680
Type cve
Reporter cve@mitre.org
Modified 2017-08-29T01:34:00

Description

Untrusted search path vulnerability in Bandisoft Bandizip before 3.10 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory. Per: http://cwe.mitre.org/data/definitions/426.html

"CWE-426: Untrusted Search Path"