CVE-2013-1361

Sažetak

Untrusted search path vulnerability in Lenovo Thinkpad Bluetooth with Enhanced Data Rate Software 6.4.0.2900 and earlier allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse DLL that is located in the same folder as a file that is processed by Lenovo Bluetooth.

Reference

http://secunia.com/advisories/51846
http://technet.microsoft.com/en-us/security/msvr/msvr13-001
http://www.osvdb.org/89483
http://www.securityfocus.com/bid/57504
https://exchange.xforce.ibmcloud.com/vulnerabilities/81428

CVSS

Base:	9.3
Impact:	10.0
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-08-2017 - 01:33

Objavljeno

21-01-2014 - 18:55