CVE-2012-4757
CVE-2012-4757 describes multiple untrusted search path vulnerabilities in CyberLink StreamAuthor 4.0 build 3308 that allow local users to gain privileges by placing (1) mfc71loc.dll or (2) mfc71enu.dll in the current working directory, demonstrated via a directory containing a .sta or .stp file. ...