6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
7.4 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
An untrusted path vulnerability was found in UltraVNC. By exploiting this vulnerability malicious users can gain privileges. This vulnerability can be exploited locally via a DLL hijack.
CVE-2010-5248 high
Update to latest version
Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.
Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.