Untrusted search path vulnerability in Shell32.dll in Microsoft Windows 2000, Windows XP, Windows Vista, Windows Server 2008, and Windows 7, when using an environment configured with a string such as %APPDATA% or %PROGRAMFILES% in a certain way, allows local users to gain privileges via a Trojan horse DLL under the current working directory, as demonstrated by iTunes and Safari.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2012-03-28T19:00:00
Updated: 2016-11-25T19:57:01
Reserved: 2012-03-28T00:00:00
Link: CVE-2007-6753
JSON object: View
NVD Information
Status : Modified
Published: 2012-03-28T19:55:00.847
Modified: 2016-11-28T19:06:59.950
Link: CVE-2007-6753
JSON object: View
Redhat Information
No data.
CWE