CyberSec.Space Logo
Back to CVE Browser

CVE-2010-5202

MEDIUM
6.9
CVSS Severity Score
EPSS Score0.1850%
EPSS Percentile40.80th
PublishedSep 6, 2012
Last ModifiedApr 29, 2026

Vulnerability Description

Untrusted search path vulnerability in JetAudio 8.0.7.1000 Basic allows local users to gain privileges via a Trojan horse WNASPI32.DLL file in the current working directory, as demonstrated by a directory that contains a .mp3 file. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

πŸ“¦
Jetaudio

Jetaudio

= 8.0.7.1000

References & Advisories

πŸ”— http://secunia.com/advisories/41308
πŸ”— http://www.exploit-db.com/dll-hijacking-vulnerable-applications/
πŸ”— http://secunia.com/advisories/41308
πŸ”— http://www.exploit-db.com/dll-hijacking-vulnerable-applications/

Related Vulnerabilities

CVE-2007-498310.0

Directory traversal vulnerability in the JetAudio.Interface.1 ActiveX control in JetFlExt.dll in jetAudio 7.0.3 Basic and 7.0.3.30...

CVE-2008-07479.3

Stack-based buffer overflow in COWON America jetAudio 7.0.5 and earlier allows user-assisted remote attackers to execute arbitrary...

CVE-2007-54879.3

Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote attackers to execute arbitrary code ...

CVE-2009-46689.3

Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary ...