CVE Reference: CVE-2010-5219

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2010-5219

Description:
Untrusted search path vulnerability in SmartFTP 4.0.1140.0 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .txt, .html, or .mpg file. NOTE: some of these details are obtained from third party information.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA41808

MISC
  http://packetstormsecurity.org/1010-exploits/smartftp4-dllhijack.txt


Return to the previous page.