| |
Vulnerability CVE-2017-2176
Published: 2017-06-09
| Description: |
Untrusted search path vulnerability in screensaver installers (jasdf_01.exe, jasdf_02.exe, jasdf_03.exe, jasdf_04.exe, jasdf_05.exe, scramble_setup.exe, clock_01_setup.exe, clock_02_setup.exe) available prior to May 25, 2017 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. |
CVSS2 => (AV:N/AC:M/Au:N/C:C/I:C/A:C)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
9.3/10 |
10/10 |
8.6/10 |
| Exploit range |
Attack complexity |
Authentication |
Remote |
Medium |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Complete |
Complete |
Complete |
References: |
http://jvn.jp/en/jp/JVN41185163/index.html
http://www.mod.go.jp/asdf/information/index.html
http://www.securityfocus.com/bid/98823
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
