// For flags

CVE-2010-5231

 

Severity Score

7.3
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Untrusted search path vulnerability in DivX Player 7.2.019 allows local users to gain privileges via a Trojan horse VersionCheckDLL.dll file in the current working directory, as demonstrated by a directory that contains a .avi file. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerabilidad de ruta de búsqueda no confiable en DivX Player v7.2.019 permite a usuarios locales obtener privilegios a través de un archivo VersionCheckDLL.dll caballo de troya en el directorio de trabajo actual, como lo demuestra un directorio que contiene un archivo. Avi. NOTA: el origen de esta información es desconocida, los datos se obtienen exclusivamente a partir de información de terceros.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Local
Attack Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2012-09-07 CVE Reserved
  • 2012-09-07 CVE Published
  • 2024-09-17 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (2)
URL Tag Source
http://secunia.com/blog/120 X_refsource_misc
URL Date SRC
URL Date SRC
URL Date SRC
http://secunia.com/advisories/41108 2012-09-07
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Divx
Search vendor "Divx"
 Divx Player
Search vendor "Divx" for product "Divx Player"
 7.2.0.19
Search vendor "Divx" for product "Divx Player" and version "7.2.0.19"
-
Affected