Lucene search
HistoryOct 05, 2012 - 5:55 p.m.
CVE-2012-4897
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
Untrusted search path vulnerability in the installer in VMware Movie Decoder before 9.0 allows local users to gain privileges via a Trojan horse executable file in the installer directory.
Affected configurations
Node
vmwaremovie_decoderRange≤7.1.2
ORvmwaremovie_decoderMatch6.5.2
ORvmwaremovie_decoderMatch6.5.3
ORvmwaremovie_decoderMatch6.5.4
ORvmwaremovie_decoderMatch6.5.5
ORvmwaremovie_decoderMatch7.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| vmware | movie_decoder | * | cpe:2.3:a:vmware:movie_decoder:*:*:*:*:*:*:*:* |
| vmware | movie_decoder | 6.5.2 | cpe:2.3:a:vmware:movie_decoder:6.5.2:*:*:*:*:*:*:* |
| vmware | movie_decoder | 6.5.3 | cpe:2.3:a:vmware:movie_decoder:6.5.3:*:*:*:*:*:*:* |
| vmware | movie_decoder | 6.5.4 | cpe:2.3:a:vmware:movie_decoder:6.5.4:*:*:*:*:*:*:* |
| vmware | movie_decoder | 6.5.5 | cpe:2.3:a:vmware:movie_decoder:6.5.5:*:*:*:*:*:*:* |
| vmware | movie_decoder | 7.0 | cpe:2.3:a:vmware:movie_decoder:7.0:*:*:*:*:*:*:* |
Related
nessus
nessus
prion
prion
Design/Logic Flaw
2012-10-05 17:55:00
cvelist
cvelist
CVE-2012-4897
2012-10-05 17:00:00
cve
cve
CVE-2012-4897
2012-10-05 17:55:00
securityvulns
securityvulns
VMSA-2012-0014 VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates
2012-10-15 00:00:00
VMWare applications security vulnerabilities
2012-10-15 00:00:00
vmware
vmware
VMware vCenter Operations, CapacityIQ, and Movie Decoder security updates
2012-10-04 00:00:00
CVSS2
6.9
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
AI Score
6.4
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2012-4897