CyberSec.Space Logo
返回 CVE 浏览器

CVE-2010-5202

MEDIUM
6.9
CVSS Severity Score
EPSS Score0.1850%
EPSS Percentile40.80th
Published2012年9月6日
Last Modified2026年4月29日

Vulnerability Description

Untrusted search path vulnerability in JetAudio 8.0.7.1000 Basic allows local users to gain privileges via a Trojan horse WNASPI32.DLL file in the current working directory, as demonstrated by a directory that contains a .mp3 file. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Jetaudio

Jetaudio

= 8.0.7.1000

References & Advisories

🔗 http://secunia.com/advisories/41308
🔗 http://www.exploit-db.com/dll-hijacking-vulnerable-applications/
🔗 http://secunia.com/advisories/41308
🔗 http://www.exploit-db.com/dll-hijacking-vulnerable-applications/

相关漏洞威胁

CVE-2007-498310.0

Directory traversal vulnerability in the JetAudio.Interface.1 ActiveX control in JetFlExt.dll in jetAudio 7.0.3 Basic and 7.0.3.30...

CVE-2008-07479.3

Stack-based buffer overflow in COWON America jetAudio 7.0.5 and earlier allows user-assisted remote attackers to execute arbitrary...

CVE-2007-54879.3

Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote attackers to execute arbitrary code ...

CVE-2009-46689.3

Stack-based buffer overflow in JetCast.exe 2.0.4.1109 in jetAudio 7.5.2 and 7.5.3.15 allows remote attackers to execute arbitrary ...