CyberSec.Space Logo
返回 CVE 浏览器

CVE-2010-5204

MEDIUM
6.9
CVSS Severity Score
EPSS Score0.0050%
EPSS Percentile7.92th
Published2012年9月6日
Last Modified2026年4月29日

Vulnerability Description

Multiple untrusted search path vulnerabilities in IBM Lotus Symphony 1.3.0 20090908.0900 allow local users to gain privileges via a Trojan horse (1) eclipse_1114.dll or (2) emser645mi.dll file in the current working directory, as demonstrated by a directory that contains a .odm, .odt, .otp, .stc, .stw, .sxg, or .sxw file. NOTE: some of these details are obtained from third party information.

Affected Platforms (CPE)

📦
Ibm

Lotus Symphony

= 1.3.0.20090908.0900

References & Advisories

🔗 http://core.yehg.net/lab/pr0js/advisories/dll_hijacking/%5Bibm_lotus_symphony%5D_3-beta-4_insecure_dll_hijacking
🔗 http://secunia.com/advisories/41400
🔗 http://core.yehg.net/lab/pr0js/advisories/dll_hijacking/%5Bibm_lotus_symphony%5D_3-beta-4_insecure_dll_hijacking
🔗 http://secunia.com/advisories/41400

相关漏洞威胁

CVE-2011-288410.0

Multiple unspecified vulnerabilities in IBM Lotus Symphony 3 before FP3 have unknown impact and attack vectors, related to "critic...

CVE-2008-19659.3

Argument injection vulnerability in the cai: URI handler in rcplauncher in IBM Lotus Expeditor Client for Desktop 6.1.1 and 6.1.2,...

CVE-2012-01929.3

Multiple integer overflows in vclmi.dll in the visual class library module in IBM Lotus Symphony before 3.0.1 might allow remote a...

CVE-2011-28854.3

IBM Lotus Symphony 3 before FP3 allows remote attackers to cause a denial of service (application crash) via the sample .doc docum...