CVE-2010-2369
CVE-2010-2369 affects Lhasa 0.19 and earlier. The issue is an untrusted/search path vulnerability where Lhasa may load executables (.exe) from the current working directory, potentially allowing local privilege escalation or arbitrary code execution if a Trojan horse file is present. Public refer...